This article was created by
Radu Serrano, eGA
Share this article!
Cybersecurity in Bosnia and Herzegovina
This article is powered by eGA’s National Cyber Security Index (NCSI), a global live index, which measures the preparedness of countries to prevent cyber threats and manage cyber incidents. Available at https://ncsi.ega.ee/, the NCSI is also a database with publicly available evidence materials and a tool for national cyber security capacity building.
Bosnia and Herzegovina demonstrates a higher level of responsive cybersecurity, followed by a decreasing emphasis on strategic and preventive cybersecurity. Cybersecurity development lags behind its digital development, becoming an unignorable risk in the overarching digital transformation process.
Strategic cybersecurity
The country scores high in education and professional development, demonstrating its commitment to cybersecurity in primary, secondary, and partially tertiary (i.e., at the graduate level) education. These efforts further extend to the doctoral level, thus providing a boost to the nation’s cybersecurity research and development. Nevertheless, there is a lack of information on associations for cybersecurity professionals.
Bosnia and Herzegovina maintains international cyber diplomacy engagements and an official position on the application of international law in cyberspace. However, given the country’s corresponding governance and administrative structure, all national cybersecurity policy indicators remain unfulfilled.
Preventive cybersecurity
Similar to the rest of the region’s economies, Bosnia and Herzegovina fulfils all personal data protection indicators with the corresponding legislation and authority. Nevertheless, given the country’s corresponding governance and administrative structure, all national indicators relative to critical and critical information infrastructures remain unfulfilled.
Electronic signatures, legislated by the 2006 Law on Electronic Signature and the 2014 Law on Electronic Document, are the only element of the capacity related to the cybersecurity of digital enablers. Public cybersecurity awareness resources are presented by the corresponding police forces of the country’s administrative divisions, and no other cyber threat and awareness indicators are achieved.
Responsive cybersecurity
Bosnia and Herzegovina fulfils all indicators in the fight against cybercrime. However, given the country’s corresponding governance and administrative structure, cyber incident response and cyber crisis management are not available at the national level. The country’s military has participated in international cybersecurity-related exercises.
Overall
Bosnia and Herzegovina demonstrates 33.33% and 33.76% completion rates of eGA’s NCSI and ITU’s 2024 GCI, respectively. This NCSI score lags quite behind the average of the EGDI and NRI digital development metrics, thus indicating that cybersecurity is not being considered at the national level in the digital transformation process.
Additional references
- E-Government Survey 2024: Accelerating Digital Transformation for Sustainable Development. (2024) United Nations Department of Economic and Social Affairs. https://desapublications.un.org/
- Global Cybersecurity Index, 5th (2024) International Telecommunication Union (ITU). https://www.itu.int/gci
- NCSI | Bosnia and Herzegovina. (2025) e-Governance Academy (eGA). https://ncsi.ega.ee/country/ba/
- Network Readiness Index 2024: Building a Digital Tomorrow: Public-Private Partnerships for Digital Readiness. (2024) Portulans Institute. http://www.networkreadinessindex.org
Disclaimer: This article was written in May 2025, using the data available in the NCSI at that time. If you believe the current NCSI information is wrong or outdated, please contact us at and send us your comments, questions, and any updated data.
