A deep dive into CyberSecurity Malaysia's initiatives and innovations

Kaspersky Tech

4 Jun 202517:37

Summary

TLDRArman from Cybersecurity Malaysia discusses the organization's journey, its vision, and key services in the realm of cybersecurity. He highlights efforts in securing IoT and ICS, vulnerability assessments, penetration testing, and promoting cybersecurity awareness. With a focus on national security and resilience, Cybersecurity Malaysia aims to lead global cybersecurity initiatives through services like the Cyber 999 hotline, certifications, and strategic collaborations. Arman emphasizes the importance of secure design, addressing vulnerabilities, and the role of the people-process-technology framework in cybersecurity, urging organizations to be proactive in securing their systems.

Takeaways

😀 Cyber Security Malaysia was established in 2007 with a mission to enhance national security, economic prosperity, and social harmony through quality cyber services and technical expertise.
😀 The agency is tasked with five major functions: cyber security response, proactive services, outreach and capacity building, strategic studies, and industry research and development.
😀 Cyber Security Malaysia offers digital forensic services, such as cyber CSI, cyber discovery, and expert witness services in court.
😀 A core service is the MyCERT initiative, which provides security advisories and alerts to Malaysian users, enhancing national cyber defense.
😀 The agency also offers certification programs, including a global certification for penetration testers, and has been involved in the development of secure industrial control systems (ICS) and the Internet of Things (IoT).
😀 Cyber Security Malaysia is collaborating with international partners, such as Japan, to test and secure IoT and ICS environments through various labs.
😀 A major focus is vulnerability assessment and penetration testing, particularly for critical infrastructure like offshore oil rigs and industrial systems.
😀 The organization runs various outreach programs, including the 'Cyber Safe' campaign, training for cybersecurity professionals, and a cybersecurity clinic offering data recovery services during disasters.
😀 The Cyber DSA (Cyber Digital Services Defense and Security Asia) conference, held annually, serves as a platform for cybersecurity leaders to collaborate and discuss key challenges.
😀 Cyber Security Malaysia emphasizes the importance of secure design principles, such as minimizing attack surfaces and ensuring devices are secure by default, in the development of IoT systems.
😀 The agency stresses that cybersecurity involves a balance between people, processes, and technology, and that vulnerabilities in even a single application can jeopardize the entire organization.

Q & A

What is the main mission of CyberSecurity Malaysia?
-CyberSecurity Malaysia aims to be a world-class cybersecurity specialist agency, focusing on enhancing national security, economic prosperity, and social harmony by providing quality services and fostering technical supremacy, cyber knowledge, and continuous talent development.
What are the five major functions of CyberSecurity Malaysia?
-The five major functions of CyberSecurity Malaysia are: 1) Cybersecurity responsive services, 2) Cybersecurity proactive services, 3) Outreach and capacity building, 4) Strategic study and engagement, and 5) Industry and research development.
What types of digital forensic services does CyberSecurity Malaysia provide?
-CyberSecurity Malaysia offers digital forensic services through Cyber CSI, Cyber Discovery, and Cyber DEF. They also serve as expert witnesses in court, assisting with digital forensic investigations involving devices like phones, laptops, and computers.
What is the MyCyberSecurity Clinic?
-The MyCyberSecurity Clinic provides trustworthy data recovery services for individuals affected by natural disasters, such as floods, helping recover data from damaged devices like phones and computers free of charge.
How does CyberSecurity Malaysia support vulnerability assessments?
-CyberSecurity Malaysia conducts vulnerability assessments and penetration testing on critical systems, including industrial control systems (ICS) and Internet of Things (IoT) devices, to identify vulnerabilities and develop mitigation strategies.
What is the significance of the Red Team vs. Blue Team exercise?
-The Red Team vs. Blue Team exercise simulates a cybersecurity battle where the Red Team acts as hackers attempting to infiltrate systems, while the Blue Team defends them. This exercise helps test the effectiveness of cybersecurity measures and improves communication and defense strategies.
What are the key layers in the IoT security model mentioned in the transcript?
-The IoT security model includes five layers: 1) IoT nodes (e.g., smart city, healthcare devices), 2) Communication gateway (wireless protocols), 3) Network devices, firewalls, and web applications, 4) Data integration and analysis, and 5) IT security policy and regulation.
What is the importance of 'secure by design' in IoT security?
-'Secure by design' refers to building security into the system from the start. For IoT devices, this includes features like secure default settings, such as routers that come with secure passwords and minimizing attack surfaces to reduce vulnerabilities.
What role does CyberSecurity Malaysia play in industry collaboration?
-CyberSecurity Malaysia offers a Collaboration Service Malaysia (CCP) program, where organizations with innovative products or services can collaborate with the agency to enhance cybersecurity solutions and contribute to the national cybersecurity ecosystem.
What is the Cyber Digital Services Asia (Cyber DSA) event?
-Cyber DSA (Cyber Digital Services Asia) is an annual event organized by CyberSecurity Malaysia, aimed at enhancing knowledge and collaboration in cybersecurity. The event brings together experts from the cybersecurity industry, with the 2024 event scheduled for August 8th, 2024, and the 2025 event from October 7th to 9th.