Sri Lanka has recently signed the Cybersecurity Convention in Hanoi, becoming a signatory to this United Nations Convention against Cybercrime, aimed at strengthening legal frameworks and fostering partnerships among stakeholders at both local and international levels.
Acting Secretary of the Digital Ministry, Waruna Dhanapala, stated that within the next three months the ministry will initiate an inter-ministerial mechanism with the Ministries of Justice, Foreign Affairs, Public Security, Defence, and other relevant entities to begin the process of ratifying the convention.
He further noted that the Cabinet has approved a national cybersecurity policy, marking a significant step toward establishing a comprehensive approach to cybersecurity in the country.
Sri Lanka has already made notable progress in combating cybercrime, having ratified the Council of Europe’s Convention on Cybercrime in May 2015 — becoming the first South Asian nation to do so. The recent signing of the Cybersecurity Convention reflects the nation’s continued commitment to strengthening its cybersecurity framework and aligning with international standards, the official added.
As part of its cybersecurity strategy, Sri Lanka plans to implement a national-level Malware and Threat Hunting Lab this year. Investments aimed at improving security across state institutions are also underway under the National Cybersecurity Strategy, with many institutions already briefed and undergoing security assessments.
Additionally, the country’s Cybersecurity Law is currently under review by a designated panel and is expected to be presented to Parliament later this year. The legislation will empower the Central Security Agency to manage the national cybersecurity strategy and safeguard critical information infrastructure, particularly in the context of the growing digital economy. The Act will also enhance the capabilities of SLCERT, enabling it to respond to and manage cybersecurity incidents more effectively.
