Brazzaville meeting sets clearer cybersecurity oversight
In Brazzaville on January 15, Congo’s Minister of Posts, Telecommunications and the Digital Economy, Léon Juste Ibombo, delivered key guidance to ANSSI Director General Oboulhas Tsahat Conrad Onésime. The aim, according to the minister, is to help the agency better carry out its role as a regulator (ACI).
The instructions were given during a visit to ANSSI’s premises. The moment signals a push for clearer institutional coordination around cybersecurity, at a time when both public services and private companies increasingly depend on digital tools to operate, serve users, and manage sensitive data (ACI).
Audit authority and approvals for information systems
Ibombo’s central message was about authority and access. He told the agency’s leadership that every line of business should be made aware that ANSSI has the right and authority to audit, request information, and approve information systems and terminals deployed for the development of an enterprise or an administration (ACI).
In practical terms, the guidance frames ANSSI not merely as a technical actor but as a regulator expected to verify compliance and security readiness across sectors. This positioning can also reduce uncertainty for organizations that need to understand which standards apply and which body has the mandate to validate systems (ACI).
Awareness of laws and sector-by-sector outreach
The minister emphasized the importance of sensitizing each sector about the legal texts that empower ANSSI to control information systems in the country. This focus on outreach suggests that governance is not only a matter of issuing rules, but also ensuring that administrations and firms understand their obligations and the reasons behind them (ACI).
For many organizations, cybersecurity obligations can appear abstract until a breach or disruption occurs. By highlighting awareness of laws and texts, the ministry’s approach points toward preventive compliance, where security checks and reporting become embedded in routine management rather than treated as exceptional measures (ACI).
Training youth and recruiting top profiles for digital policy
Ibombo also linked regulation to skills. He stressed training for young people to build capabilities, identify promising talent, and mobilize that expertise for implementing the country’s digital policy. The message connects national cybersecurity capacity to education and workforce development, not only to technology purchases (ACI).
The minister further underlined recruiting the best profiles, whether trained locally or abroad, to ensure smooth operations and high-level expertise inside the agency. The emphasis on talent pipelines reflects the reality that cybersecurity institutions are only as strong as the specialists who design, audit, and respond (ACI).
ANSSI plans audits, monitoring, and certifications
Conrad Onésime said ANSSI, supported by implementing decrees and instructions from its supervising authority, will carry out audits, perform technological monitoring of information systems, and issue accreditations to providers of security services for information systems. This outlines a toolbox combining oversight, surveillance of trends, and market structuring (ACI).
Accreditation, in particular, can shape the cybersecurity services landscape by clarifying which providers meet expected standards. If consistently applied, it may help administrations and firms select qualified partners, while giving regulators a clearer picture of actors operating in the sector and the level of services available (ACI).
A 2019 law anchors Congo’s national cyber defense mission
Created by Law No. 30-2019 of October 10, 2019, ANSSI is described as a cross-cutting agency dedicated to the security of information systems. Placed under the authority of the Presidency of the Republic, it is tasked with securing the national cyberspace and managing security incidents and threats (ACI).
The agency’s mission also includes responding to cyberattacks, promoting collaboration between public and private actors, protecting national digital infrastructures, strengthening national response capacities, and issuing alerts on cyber matters. Together, these functions depict a model that blends coordination, prevention, and operational response (ACI).
What the new guidance could change for Congo’s digital economy
The minister’s directives suggest an effort to make cybersecurity governance more predictable for both the administration and the private sector. In a context where digital services expand across sectors, clearer audit and approval procedures may help organizations integrate security earlier, rather than retrofitting protections after deployment (ACI).
The policy emphasis on training and recruitment also points to longer-term institutional sustainability. Building a skilled base can improve audit quality, incident handling, and the credibility of certifications. Over time, that credibility can support trust in online services, data handling, and the broader digital economy (ACI).