Digital Ecosystem 21 November 2019 The Global Trend The - - PowerPoint PPT Presentation

digital ecosystem
SMART_READER_LITE
LIVE PREVIEW

Digital Ecosystem 21 November 2019 The Global Trend The - - PowerPoint PPT Presentation

Jan 25, 2023 171 likes •304 views

2019 MCMC Research Symposium Cyber Security vs. Cyber Resilience ~Knowing the difference and relevance in strengthening the Digital Ecosystem 21 November 2019 The Global Trend The Technologies Today The Emerging Technologies The Near

slide-1
SLIDE 1

2019 MCMC Research Symposium Cyber Security vs. Cyber Resilience ~Knowing the difference and relevance in strengthening the Digital Ecosystem

21 November 2019

slide-2
SLIDE 2

The Technologies Today… The Near Future Technologies… The Emerging Technologies … Protecting the Cyber Environment is the key to the “TRUST”

The Global Trend

Digital Economy National Security & Sovereignty

2

slide-3
SLIDE 3

TOP 5 EMERGING TECHNOLOGIES

INTERNET OF THINGS (IOT) ARTIFICIAL INTELLIGENCE VIRTUAL REALITY (VR)/AUGMENTED REALITY (AR) SERVERLESS COMPUTING/CLOUD COMPUTING 5G MOBILE

Technologies that will drive the IR4.0, Smart City, Digital Economy & etc…

3

slide-4
SLIDE 4

THREAT ACTORS

Cyber threat is inherently international and cyber threat actors affect areas throughout the world at the same time to increase their success rates

4

slide-5
SLIDE 5

CYBER SECURITY THREAT LANDSCAPE

Revenge Cyber Attack

  • n Critical

Infrastructure Breached of Sensitive Information Cybercrime Technology Vulnerabilities (Dependencies) Hacktivism Harmful Internet Content Terrorist use

  • f Internet

Power Supply Grid Internet Infrastructure Banking System Airlines Services Information Stolen- Unaware Information Stolen - Exposed Information Stolen – Criminal Activities Online Fraud Intrusion Phishing Too Dependent

  • n Technologies

and Companies – Unauthorized Access to Critical Information & System Socially or Politically Motivated Attention Pornography Online Gambling Child Abused Materials Cyber Bullying Influencing Ideology Recruiting Fund Raising

IMPACT

Operation Planning

Government to Function National Security Sovereignty Economy National Image Public Safety Privacy

5

slide-6
SLIDE 6

6

Cyber Security vs. Cyber Resilience

preservation of confidentiality, integrity and availability of information in the Cyberspace

// ISO 27032 – Guidelines for Cybersecurity

The ability to anticipate, withstand, recover from, and adapt to adverse conditions, stresses, attacks, or compromises on systems that use or are enabled by cyber resources.

//Draft NIST Special Publication 800-160 Vol 2 – Developing Cyber Resilient System

CYBER RISKS

slide-7
SLIDE 7

RESOURCES

National lead agency for cyber security, with the objectives of securing and strengthening Malaysia's resilience in facing the threats of cyber attacks, by coordinating and consolidating the nation's best experts and resources in the field of cyber security. Protection of Critical National Information Infrastructure Coordination Strategy in Managing Cyber Crime Cyber Security Technology Capacity & Capability Building Education & Awareness

Policy/Strategy Formulation Monitor & Improve Coordination Officially established in February 2017

7

slide-8
SLIDE 8

WHEN AND HOW DID WE START?

Malaysia started early in Cyber Security initiatives since 1997 to support the implementation of the Multimedia Super Corridor (MSC) in creating the best environment for Malaysia to harness the full potential of ICT and become the big user of ICT.

WHY DO WE NEED TO ESTABLISH NACSA

1992

International Internet Gateway

1997

  • Computer

Crimes Act 1997

  • Digital

Signature Act 1997 Under MIMOS

1998

Communications and Multimedia Act 1998

1999

Under MIMOS

2001

United Nations Group of Governmental Experts (UNGGE)

2004

  • National Security

Council created Cyber & Space Security Division

  • National Cyber

Security Policy (NCSP)

  • NCCMP
  • 1st X-Maya

Cyber Drill

  • Started NCSP

Implementation Cybersecurity Governance JPDP

2011 2010 2008 2007 2006

MKN’s Arahan 24 launched

2013 2016 2017

National Cyber Coordination and Command Centre (NC4) NACSA under MKN

8

slide-9
SLIDE 9

NATIONAL CYBER SECURITY ECO-SYSTEM

Policy Governance Coordination Critical National Information Infrastructure Protection

Capacity Building Awareness & Education International Cooperation Cybercrime National Security & Sovereignty

NACSA, MKN SECTOR LEAD PDRM, ILKAP, INTAN, MDEC, MCMC, CSM, UNIVERSITIES & POLYTECHNICS KKMM, MCMC, MINDEF, KDN, KLN AGC, PDRM, MCMC, BNM, SC, KPDNHEP, MOH CSM MCMC, PDRM, BNM, SC, MOE,NGOs, Private Sectors, Industries CSM ATM, PDRM, RD

 Legal, Technical & Economy  Support Government Digital Initiatives  Provide Engagement Platforms  Information Sharing  Public- Private Partnerships  Resource Utilization  Industry involvement  Protection of SMEs and Businesses

9

slide-10
SLIDE 10

MALAYSIAN CYBER SECURITY STRATEGY

5 STRATEGIC PILLARS

S8 Enhance National Cyber Security Capacity and Capabilty Building S9 Enhance Cyber Security Awareness S10 Nourish Cyber Security Knowledge Through Education S1 Enhance National Cyber Security Governance and Ecosystem S2 Improve Organisation Management and Business Operation (Government, CNII and Business) S3 Strengthen Cyber Security Incident Management and Active Cyber Defense S11 Strengthening International Collaboration and Cooperation in Cyber Security Affairs S12 Demonstrating Malaysia's Commitment in Promoting Secure, Stable and Peaceful Cyberspace to Uphold International Security S4 Enhance Malaysia’s Cyber Laws to Address Current and Emerging Threats S5 Enhance the Capacity and Capability of Cyber Crime Enforcement S6 Spur National Cyber Security R&D Programme S7 Promote a Competitive Local Industry and Technology

The Five Strategic Pillars

Effective Governance and Management Strengthening Legislative Framework and Enforcement Developing Capacity & Capability Building, Awareness and Education Catalysing World Class Innovative, Technology, R&D and Industry Strengthening Global Collaboration

P2 P2 P1 P1 P3 P3 P4 P4 P5 P5

5 Pillars 12 Strategies 35 Action Plans 112 Programmes

Clear role of Key Agencies Cyber Security in National Agenda 10

slide-11
SLIDE 11

1 2 3 4 5

Effective Governance & Management

  • Protection of Critical

Infrastructure through Active Cyber Defence

  • Strengthen Incident

Management

National Sectoral Organisation

  • Supply Chain Security
  • Technology Security
  • Small & Medium Enterprises
  • Industries
  • Cyber Risk Framework
  • Effective Coordination
  • Information Sharing
  • Clear Roles & Responsibilities
  • Policy, Regulations,

Guideline, Compliance

Strengthening Legislative Framework & Enforcement Catalysing World Class Innovative, Technology, R&D and Industry Developing Capacity & Capability Building, Awareness and Education Strengthening Global Collaboration

Threat Visibility Prevent Predict Detect Respond Deter Early Warning Integrated SOC Operation

MALAYSIA CYBER SECURTIY STRATEGY

  • Study & review existing

law

  • Study & enact new

specific law

  • Enhance the capacity &

capability of Cybercrime Enforcement

  • National Cybercrime

Enforcement Plan

  • National Cybercrime

Coordination Centre

  • R&D Roadmap
  • National Cyber Security

Challenge Repository

  • Venture Capital to

market new local Cyber security solutions

  • Incentives /showcases
  • Promote local products
  • Cyber Certification

Body

  • Centre of Excellence

3-S 2-S 2-S 3-S 2-S

CYBER WORKFORCE NATIONAL

  • National Cyber Security

Capacity & capability Building Plan

  • National Cyber Security

Awareness Master Plan

  • Nourish Cyber Security

Knowledge through Education

  • Address cyber security

as a priority in foreign policy

  • Align domestic and

international cyber security efforts

  • Actively participate &

contribute in key international fora and strategically collaborate with international partners

slide-12
SLIDE 12

THANK YOU