AMMAN — Jordan is steadily positioning itself as a cybersecurity leader in the region, ranking first in the Arab world and 20th globally on the Global Cybersecurity Index (GCI). This achievement, according to cybersecurity expert Hamza Akalik, reflects the Kingdom’s long-term commitment to digital resilience, innovation and national security.

 

“Cybersecurity in Jordan is not just about defending networks; it’s a comprehensive strategy that ties technology to trust, sovereignty, and sustainable growth,” Akalik told The Jordan Times. The Kingdom’s progress is guided by the National Cybersecurity Strategy (2025–2028), which sets four main priorities: protecting Critical National Infrastructure (CNI), ensuring safe data governance, developing cyber skills, and strengthening international cooperation, he noted.

 

The National Centre for Cybersecurity (NCSC), which reports directly to the Prime Minister, leads these efforts and ensures that public and private institutions integrate cybersecurity into every stage of their operations, he said.

 

Akalik noted that this “security by design” approach represents a shift in mindset. “Cybersecurity is no longer an afterthought; it is integrated into every stage of Jordan’s digital transformation,” he said.

 

Rising threats amid rapid digitalisation

 

With Jordan’s growing reliance on digital services, the threat landscape has expanded dramatically. The NCSC reported 2,455 cyber incidents in 2023, marking an 80 per cent increase from the previous year. "These incidents ranged from ransomware and data breaches to targeted phishing attacks against key sectors."

 

Akalik explained that cybercrime is growing rapidly worldwide, with ransomware alone generating hundreds of millions of dollars in illegal profits each year. He added that attackers increasingly target critical systems and government platforms, while state-sponsored hackers continue to focus on Jordan due to its strategic regional position.

 

He also noted that Jordan’s regional importance makes it both a target and a model for cyber resilience. As more public services and industries go online, the cost of inaction becomes too high, he said, adding that a major cyberattack on energy, health or financial systems could “disrupt the economy and undermine public trust.”

 

To mitigate such risks, the government is implementing a sectoral defence model under the National Energy Sector Strategy (2025–2028), the expert said, adding that this includes the creation of specialised Cyber Emergency Response Teams (CERTs) and Cyber Threat Intelligence (CTI) units within each critical sector.

 

Akalik explained that Jordan’s decentralised defence model ensures that cyber resilience is shared across sectors, rather than being concentrated in a single agency. "By giving each sector its own specialised teams, the country can detect and respond to attacks more quickly and effectively."

 

Balancing security with freedom

 

Jordan’s cybersecurity architecture is supported by three key laws: the Cyber Security Law (2019), the Data Protection Law (2023), and the Cybercrime Law (2023). Together, they establish a framework for data protection, digital accountability, and online safety, according to Akalik.

 

The expert emphasised that Jordan’s Cybercrime Law has prompted public debate, noting that while the law targets hacking, phishing, and identity theft, careful attention is needed to ensure enforcement does not limit legitimate online discourse.

 

Akalik noted that balancing cybersecurity enforcement with citizens’ freedoms is a complex challenge, emphasising the importance of transparency, accountability, and public awareness in ensuring that laws protect both infrastructure and individual rights.

 

Towards a resilient digital economy

 

Jordan’s cybersecurity success also supports its Economic Modernisation Vision, which forecasts the ICT sector to grow by around 16 per cent annually, reaching $5.68 billion by 2030, according to official figures. Akalik noted that effective cyber governance would be crucial for supporting this growth and safeguarding the country’s expanding digital services.

 

He stressed that cybersecurity must be viewed as “a growth enabler, not a barrier.” “By creating a safe digital environment, Jordan strengthens its competitiveness and encourages foreign and local investors to build here,” he said.

 

As Jordan transitions from defence to leadership, Akalik stressed that cooperation between government, academia, and the private sector will be crucial in the next stage. He noted that Jordan’s progress demonstrates how cybersecurity can provide both protection and economic opportunity, while supporting the development of digital trust across the region.