Cyber Threat Intelligence Sharing in Nigeria

Abstract

Cybersecurity challenges are common in Nigeria. Sharing cyber threat intelligence is essential in addressing the extensive challenges posed by cyber threats. It also helps in meeting regulatory compliance. There are a range of impediments that prevent cyber threat intelligence sharing. We hypothesise that we want to maximise this cyber threat intelligence sharing to resist malicious attackers. Therefore, this research investigates factors influencing threat intelligence sharing in Nigeria's cyber security practitioners. To achieve this aim, we conducted research interviews with 14 cyber security practitioners using a semi-structured, open-ended interview guide, which was recorded and transcribed. We analysed the data using an approach informed by grounded theory. We coded the data, organised the data into categories, and used constant comparison to check our code's consistency and accuracy. We developed memos from which our descriptive grounded theory emerged. After a detailed study, we found that cybersecurity practitioners in Nigeria are enthusiastic about collaborating to exchange and receive cyber threat intelligence. However, we discovered two impediments to sharing. Firstly, the existence of competing standardisation in cyber threat intelligence sharing and, secondly, the lack of practitioner's skills in data protection. These barriers inhibit cyber security practitioners from disseminating such cyber threat intelligence sharing inside Nigeria. Based on our findings, we conclude that overcoming these impediments will help cybersecurity practitioners share more cyber threat intelligence in Nigeria.