Nigeria is facing an escalating cybersecurity crisis due to a severe shortage of skilled professionals, just as the volume and sophistication of cyberattacks reach record highs. Reports show that Nigerian organizations endured an average of 4,388 cyberattacks per week in early 2025—nearly 50 percent more than the same period last year. Despite this, many companies are struggling to build adequate response teams, making them increasingly vulnerable.
Global and local assessments highlight that Nigeria’s cybersecurity workforce is not meeting the demands of today’s threat landscape. Deloitte’s 2025 Cybersecurity Outlook reveals that two-thirds of organisations worldwide—including those in Nigeria—are operating below optimal staffing levels. Experts attribute much of this gap to the migration of skilled Nigerian professionals seeking better opportunities abroad, leaving a critical void in local cyber capabilities.
Industry leaders stress that while advancements in cybersecurity tools have helped reduce the number of leaked accounts, people remain the most vital component of any defense strategy. The rise of complex attack strategies, including “crime-as-a-service,” underscores the need for well-trained personnel who can effectively manage, adapt, and respond to threats. Executive leadership also plays a key role in building a culture of cybersecurity awareness and responsibility across organisations.
Despite Nigeria ranking second in Africa for cyberattack volume, its national preparedness remains underwhelming, meeting only 58.3 percent of international cybersecurity policy benchmarks. Experts argue that addressing the continent’s vulnerabilities will require over $22 billion in investment—a figure far out of reach for many Nigerian institutions. More than infrastructure, what’s lacking most is the development and retention of local human capital.
Industry experts emphasize that cultivating a resilient cybersecurity ecosystem goes beyond hiring—organizations must embed security deeply into their culture. That means continuous training, role-specific education, and leadership buy-in. As regulatory frameworks evolve and threats become more aggressive, Nigeria must act fast to train and retain the next generation of cybersecurity professionals or risk becoming defenseless in an increasingly hostile digital world.
Source: Business day