The Belize National Cybersecurity Strategy 2020–2023

The Belize National Cybersecurity Strategy 2020–2023 lays out a comprehensive framework to strengthen the country’s resilience against cyber threats and build a trusted digital environment. It was developed through a multistakeholder process involving government institutions, the private sector, academia, law enforcement, and civil society. The document situates cybersecurity within Belize’s broader development plans, such as Horizon 2030, the National Security and Defence Strategy 2017–2020, and the Growth and Sustainable Development Strategy 2016–2019. It stresses that cybersecurity is not only a technical issue but also touches on legal, social, and economic factors.

Vision and principles

The strategy envisions a safe, secure, and trusted digital environment that fosters economic growth and social inclusion. Key principles include respect for human rights online, government leadership, a risk-based approach, shared responsibility, support for innovation, and international cooperation. It emphasises that human rights—such as privacy, freedom of expression, and freedom of association—must be protected in cyberspace. The government commits to leading by example, while recognising that cybersecurity is a shared responsibility requiring active participation from businesses, academia, NGOs, and citizens.

Context and challenges

Belize’s internet penetration exceeded 50% of the population by 2018, exposing more people and institutions to cyber risks. The Police Information Technology and Cyber Unit (PITCU) has been tasked with investigating cybercrimes such as phishing, credit card fraud, identity theft, and cyberbullying. Yet, challenges remain: the legislative framework is fragmented, with reliance on older acts like the Electronic Evidence Act and the Electronic Transactions Act. There is no comprehensive cybercrime law tailored to Belize’s needs, and critical infrastructure—including financial, health, and communication systems—remains vulnerable. Moreover, a global shortage of cybersecurity professionals is reflected in Belize, making education and workforce development essential priorities.

Priority areas

The strategy identifies three main pillars of action:

1. Legal framework – Strengthen and harmonise laws to address cybercrime, digital evidence, and data protection. This includes drafting a new Cybercrime Bill, defining minimum security standards for critical infrastructure, and training prosecutors and judges on cyber issues.
2. Incident response and critical infrastructure protection – Establish a National Computer Incident Response Team (CIRT), sector-specific CIRTs, and protocols for incident reporting and recovery. The plan also calls for better risk assessments, user-friendly reporting tools, and partnerships with regional and international cybersecurity organisations.
3. Education, awareness, and workforce development – Develop a national cybersecurity workforce plan, expand university curricula, and conduct awareness campaigns targeted at youth, vulnerable groups, businesses, and public institutions. Initiatives include competitions, multimedia campaigns, and partnerships with ISPs to promote safer online practices.

Governance and implementation

The strategy calls for the appointment of a National Cybersecurity Coordinator under the Ministry of National Security to oversee implementation, coordinate among institutions, and act as the national and international point of contact. The Inter-institutional Cybersecurity Task Force, which helped design the strategy, will continue to provide advice. Implementation follows a timeline of short-, medium-, and long-term objectives (ranging from 6 months to 2 years). A review is scheduled after 18 months to evaluate progress and adjust measures as needed