CyberSecurity Malaysia holds first ISO/IEC certification awards ceremony


Malaysian Common Criteria Evaluation and Certification certifcate Recipient modified

Photo - (Centre, from left)  Dr. Amirudin Abdul Wahab, Chief Executive Officer, CyberSecurity Malaysia; Azizi A. Hadi, Senior Vice President of TM SME / Chairman of TAB; General Tan Sri Dato' Seri Panglima Mohd Azumi bin Mohamed (Retired), Chairman of the Board, CyberSecurity Malaysia; and Mrs. Fadilah Baharin, Director General of Standards Malaysia together with Malaysian Common Criteria Evaluation and Certification certificate recipients.

Continuing its push to promote best security practices and international standards in Malaysia, national security specialist CyberSecurity Malaysia has hosted its first accreditation and certification awards ceremony for Common Criteria ISO/IEC 15408, Information Security Management System (ISMS) ISO/IEC 27001, and Malaysia Trustmark e-business validation.

The agency also received an accreditation certificate from Standards Malaysia [Department of Standards Malaysia] for complying with the MS ISO / IEC 17021:2011 and MS ISO/IEC 27006:2011, both of which are international standards for certification bodies, said CyberSecurity Malaysia's chairman of the board, General Tan Sri Dato' Seri Panglima Mohd Azumi bin Mohamed (Retired) during his opening remarks.

"To improve the standard and sustainability of quality of life, cyber security evaluation and certification conducted by a recognised body like CyberSecurity Malaysia is seen as a key requirement to contribute to public serenity through reduction of the cyber crime rate, and ensure information is adequately protected," Mohd Azumi said.

"CyberSecurity Malaysia's three certification services - MyCC Scheme, CSM27001 Scheme, and Malaysia Trustmark - are proactive and adaptive approach where continuous monitoring and evaluation shall be done due to the ever-expanding technological advances which invite cyber security risks," he said

These three initiatives were officially launched by YB. Datuk Dr. Abu Bakar bin Mohamad Diah, Deputy Minister, Ministry of Science, Technology and Innovation (MOSTI), who said, "While efficiency and connectivity are clear advantages of the digital lifestyle, there is also a higher risk of cybercrime including data leakage, security breach, and fraud. If our country's cyber security is weak, our computer network and database will be easily hacked. Anyone can and will -- steal our R&D data and intellectual property -- and all our hard work and investment in time and money will be wasted"

 Vision 2020 needs strengthened cyber security

"It is not an exaggeration to say that we cannot achieve MOSTI's vision and also Malaysia's grand Vision 2020 [to achieve developed nation status], without first strengthening the national cyber security. Therefore, the Government strongly supports CyberSecurity Malaysia's initiatives in spearheading cyber security standards compliance," said Dr Abu Bakar.

Standards Malaysia director general Fadilah Baharin, said, "Standards Malaysia as the only standards and accreditation body of Malaysia, will always continue to identify relevant industry bodies to ensure that we raise the bar for quality and delivery in all aspects of business through internationally aligned standards and accreditation."

"Through this accreditation, CyberSecurity Malaysia has set up certification and evaluation facilities that have been accredited by Standards Malaysia and found to be compliant with the international standards MS ISO/IEC 17021:2011 and MS ISO/IEC 27006:2011, certifying that the certification services provided by CyberSecurity Malaysia are impartial, and credible," said Fadilah.

"By conforming to the ISMS standard, an organisation will have a system in place to ensure information under its control remains confidential, its integrity preserved and is available when needed where it is a good method to limit the impact of a security breach," she said.  "In other words, foreign companies and potential trading partners will have more trust in the capability of their Malaysian counterparts to safeguard their data/ information."

CyberSecurity Malaysia's Mohd Azumi said, "To date, CyberSecurity Malaysia's certification services have certified 39 ICT products under the MyCC Scheme and 10 Critical National Information Infrastructure (CNII) organisations under the CSM27001 Scheme. We have also validated eight (8) e-Business websites under the Malaysia Trustmark service."

At the same event, CyberSecurity Malaysia also exchanged a memorandum of agreement (MoU) with Telekom Applied Business (TAB) for the Malaysia Trustmark e-business validation service.

Commenting on the agreement with TAB, CyberSecurity chief executive officer, Dr. Amirudin said, "The MoU was signed to formalise our collaboration to create a strategic business approach to tackle the needs of the information security industry, where TAB will be providing Telekom Malaysia Certification Authority service and CyberSecurity Malaysia providing Malaysia Trustmark service or any relevant services."