As Nigeria expands its data infrastructure, reliance on foreign cloud services raises national security concerns.
Category: Technology
As Nigeria continues to expand its local data infrastructure, a troubling reliance on foreign cloud services has surfaced, particularly against the backdrop of the recent Middle East crisis. With the country’s public and corporate sectors spending approximately $850 million (N1.18 trillion) annually on cloud services, this dependency poses a risk as geopolitical tensions escalate.
According to a recent report by The Guardian, Nigeria currently operates 21 data centers, with an additional five high-capacity facilities nearing completion along the Lagos-Lekki corridor. These centers are classified under the global tier system by the Uptime Institute, primarily comprising Tier III and the rising Tier IV facilities, which are necessary for modern digital operations in sectors such as banking, fintech, and telecommunications. Yet, the potential of these facilities remains underutilized due to the prevailing trend of offshore data hosting.
As of April 2026, Nigeria’s data center capacities range between 78.6MW and 136.7MW, making them efficient for local hosting. Nonetheless, a ‘digital sovereignty gap’ persists as many firms and government agencies continue to rely on foreign hosting, particularly from hyperscale providers like Amazon, Google, and Microsoft. This reliance has been underscored by recent escalations in the Middle East, including drone attacks on Amazon Web Services (AWS) facilities in the UAE and Bahrain. Such attacks threaten the subsea cables and relay hubs that are integral to West Africa’s connectivity to global cloud services.
The implications of these geopolitical conflicts are severe. As tensions rise, the operational costs for data centers globally have increased by about 12% due to disrupted supply chains for semiconductors and GPU servers. In addition, strikes on infrastructure in the Gulf region have forced traffic rerouting, causing latency for Lagos-based firms using foreign-hosted customer relationship management (CRM) systems to spike from 40ms to over 150ms. This situation has led to a growing recognition that offshore data hosting is not merely a cost issue but a national security risk, as noted in Nigeria’s National Cloud Policy 2025.
In light of these developments, industry analysts are raising alarms about three primary risks facing Nigerian businesses: jurisdictional exposure, AI cyber threats, and redundancy failure. Data stored abroad is subject to foreign laws, leaving Nigerian authorities powerless to protect their citizens’ data in times of conflict. Recently, the UAE foiled an AI-powered cyber-attack targeting its digital platforms, raising concerns that data stored in foreign hubs could become collateral damage in state-sponsored conflicts.
As the crisis in the Middle East continues, the Chief Executive Officer of Open Access Data Centres, Ayotunde Coker, expressed the urgency of recognizing data centers as "critically national infrastructure" that must be protected. He stated, "Nigeria has enough data centers to host locally," emphasizing the need for enhanced attention to these facilities.
Digital Reality’s Managing Director, Ikechukwu Nnamani, echoed this sentiment, asserting that the Nigerian infrastructure should remain safe from attacks occurring thousands of miles away. Yet, he warned that service availability is contingent on localizing services within Nigeria to mitigate reliance on foreign infrastructure.
As the geopolitical dynamics evolve, the urgency for data sovereignty in Nigeria is becoming more pronounced. The National Digital Economy and E-Governance Bill, which is expected to be enacted by Q2 2026, aims to mandate data localization for sensitive national and security data. This legislation seeks to reduce reliance on foreign hyperscalers and protect the Nigerian economy from external shocks.
Industry experts stress that the growing cloud dependence must be treated as a national resilience issue. This entails strengthening data domiciliation, accelerating local interconnection, and building redundancy across subsea and terrestrial networks to maintain connectivity under stress. The recent crisis has catalyzed discussions about the necessity of bringing the "cloud" home, ensuring that Nigeria’s digital economy is insulated from geopolitical disruptions.
In a broader view, the Middle East crisis serves as a reminder of the vulnerabilities inherent in Nigeria's digital infrastructure. As the country aspires to become a $1 trillion economy by 2030, the establishment of 72 edge data centers across its states is deemed necessary to power its economy and create digital opportunities for its citizens.
As stakeholders in Nigeria’s tech ecosystem grapple with these challenges, the question for Chief Information Officers (CIOs) is no longer simply about data encryption. It has evolved into a more complex concern: "Where is the server located, and who is shooting at it?" This shift in perspective highlights the urgent need for a strategic approach to data protection and resilience in Nigeria's rapidly changing digital environment.
As Nigeria’s data protection framework matures, the focus will increasingly be on how to balance growth with security, ensuring that the nation’s digital assets are safeguarded against both cyber and physical threats. , and the path forward will require concerted efforts from both the public and private sectors to bolster the nation’s data sovereignty and resilience.