BUSINESS

Protect your business and your customers against cyber threats. Learn about the cyber security controls and international-based cyber security accreditations that you can adopt to increase the resiliency of your business against cyber attacks that could result in substantial financial loss, reputational damage and legal consequences.

Get the latest information on how to strengthen your business' defences and increase cyber security in your workplace.

GUIDELINES AND BEST PRACTICES FOR BUSINESS

The establishment of National Cyber Security Agency (NACSA) an agency under National Security Council (NSC) is to serve as the sole agency in coordinating and managing cyber security threats to all National Critical Information Infrastructure (NCII) agencies. This is a serious government commitment to address the issue of emerging cyber-threats which pose challenges to the economic wellbeing and security of the nation.

The Malaysian Government has launched a national policy document, National Security Council's Directive No. 26: National Cyber Security Management (NSC Directive No. 26), an executive directive that defines the overall governance of Malaysia’s cyber security ecosystem. The roles and responsibilities of every stakeholders are clearly delineated to ensure understanding and seamless implementation of national cyber security initiatives and strategy.

Among the roles and responsibilities of NCII agencies which are:

1. to implement ISO / IEC 27001: 2013 Information Security Management System (ISMS) certification or equivalent to reduce the risk of cyber security incidents and to maintain the confidentiality, integrity and availability; and
2. to conduct Cyber Incident Response Procedures and Business Continuity Management procedures.

In addition to meet this international standards requirement, these two certificates will drive NCII agencies towards a world class, integrity and more effective government delivery system.