ISSUE 21 | QUARTER 2 - 2018

National Science Week 2018, Kuala Lumpur

On April 1 to 7, 2018, CyberSecurity Malaysia participated in the National Science Week program held at the National Science Center, Bukit Kiara, Kuala Lumpur.

The National Science Week is organized by the Ministry of Science, Technology and Innovation (MOSTI) based on the National Blue Ocean Strategy (NBOS) by restructuring existing science, technology and innovation (STI) programs and activities in every Ministry and Government Department. Among the objectives of the National Science Week is to raise public awareness on the importance of Science, Technology and Innovation (STI) for Human Capital Development, recognizing the contributions of scientists, academics, individuals in promoting science and cultivating STI in the lives of Malaysians.

The opening ceremony was officiated by the Minister of Science, Technology and Innovation, Datuk Seri Panglima Wilfred Madius Tangau. Among the program held were interactive workshops, drone workshops, robotics and water rocket games, Jom Innovation games such as Interactive Innovation Puzzle, Crime Scene Investigation (CSI), Idola Kaji Cuaca, sun observations, mini planetarium free shows, Science Busking demonstrations and various activities at every exhibition booth.

Through this program, CyberSecurity Malaysia is able to promote the services offered and to educate visitors on the importance of cyber security.

“Sharing Our Journey” (SOJ) King Edward VII School Program, Taiping, Perak Darul Ridzuan

CyberSecurity Malaysia was invited by King Edward VII's Old Edward Alumni (OE) to host a CyberSAFE Talk and CyberSAFE Quest program in conjunction with the "Sharing Our Journey 6 2018" (SOJ6) Program. The program was held at SMK King Edward VII, Taiping, Perak on April 2, 2018.

The annual program concept "Sireh Pulang Ke Ganggang" featured SMK King Edward VII alumni who shared their experiences with students at the school via "Career Talk" platform.

In this program, CyberSecurity Malaysia conducted CyberSAFE Quest activities to expose school children to cyber security. While CyberSAFE Talk presented on cyber threats, guidance and advice on using the Internet prudently to the students. Students were also exposed to career opportunities in ICT as well as cyber security.

CyberSecurity Malaysia was represented by former SMK King Edward VII, Lt Col Mustaffa Ahmad (Retired) C / CISO, Senior Vice President of Outreach and Capacity Building and Mohamed Anwer Mohamed Yusoff, Head of CIEC.

CyberSecurity Malaysia participation in this program enables cyber security awareness to be applied to school children, especially in the interest of safeguarding cyberspace. It also educates them into IT literacy as well as responsible digital citizens as well as creating youths who are sensitive to digital issues and developments.

National Cyber Security Policy (NCSP) Review and Development of Malaysia Cyber Security Strategy (MCSS) Workshop, Bangi, Selangor

CyberSecurity Malaysia was involved in the National Cyber Security Policy (NCSP) and National Cyber Security Strategy (MCSS) workshop organized by National Cyber Security Agency (NACSA) on April 3 to 5, 2018 in Bangi, Selangor.

The workshop aimed to strengthen the nation's cyber security infrastructure by gaining insights, gathering feedback and analyzing information from various ministries and relevant agencies, particularly stakeholders. It aimed at updating the NCSP and generating MCSS development framework based on the expertise and experience of agencies in their respective fields.

This workshop also identified existing policy and improvements required. In addition, aspects of cyber security threats including cybercrime, information leakage, cyber-attacks on national critical systems, online fraud and illegal Internet content were presented.

The three-day workshop was attended by 198 officers from 57 public and private agencies including various Ministries in Malaysia.

The National Cyber Security Policy launched in 2006 now requires review to support the scope under the National Critical Information Infrastructure (CNII). A new strategy is needed to formulate a comprehensive and effective policy in the area of cyber security as well as expanding the scope to be monitored.

Smart Card Reader Penetration Testing Course, Granada, Spain

On 9 to 13 April 2018, CyberSecurity Malaysia attended the Smart Card Reader Penetration Testing course to test the safety level of a smart card reader. The course organized by JTEC Beyond IT Security Spain was held at the JTSEC headquarters in Granada, Spain.

CyberSecurity Malaysia's participation in this training program is crucial to enhance CyberSecurity Malaysia's capabilities and skills in offering penetration testing services involving smart cards. In addition, this exercise is also necessary to meet the demand of the "Common Criteria" (CC) testing and "ICT Product Security Assessment" (IPSA) project.

This course was attended by officials from Department of the Malaysian Safety Testing Facility (MySEF), Noraziah Anini Mohd Rashid, Nur Iylia Roslan, Nurul Izratul Imrah Zolkafle and Norzarina Zamri. In this training program, participants developed expertise and skills in smart card testing in collaboration with JTSEC Spain laboratories.

Negeri Terengganu National Science Week 2018 “STI Island Hopping”, Terengganu

CyberSecurity Malaysia participated in the STI Island Hopping program in conjunction with Terengganu State National Science Week 2018 on 10 to 12 April 2018.

The National Science Week 2018 was organized in collaboration with Terengganu State Government, Terengganu Center for Science & Creativity and Angkasawan Malaysia Foundation. The "Sea to Space - Polar to Polar" themed covered two leading islands in Terengganu namely Pulau Perhentian and Pulau Redang. The event was held at Sekolah Kebangsaan Pulau Perhentian and Sekolah Kebangsaan Pulau Redang.

Among the activities conducted were Cyber Security Talks, Workshops and Science Activities, Sky Observations, Mini Science Exhibits, Quiz Pops, Science Video Shows and TN50 Aspiration Sharing.

CyberSecurity Malaysia has spread awareness on cyber security, especially to local school students and communities.

Malaysia’s Bully Zero Symposium, Kuala Lumpur

CyberSecurity Malaysia received an invitation to be a panelist at the Malaysia's Bully Zero Symposium which took place on April 12, 2018 in Kuala Lumpur.

The symposium themed "Keeping The Soil Healthy In The Educational Institutions-It Starts From You" became the platform of experienced panelists, psychologists and educational experts to discuss and share experiences and information in addressing cyberbullying through educational institutions in Malaysia.

A total of 150 participants consisted of parents, educators, researchers, teenagers and also cyber bullying victims participated in this symposium. CyberSecurity Malaysia was represented by Lt Col Mustaffa Ahmad C / CISO (Retired), Senior Vice President of Outreach and Capacity Building. He presented the impact of social media to the problem of cyberbullying in a session entitled "New Bullying Technology: The Internet and Smart Phones”.

This symposium has further strengthened the position of CyberSecurity Malaysia as the leader in cyber security in Malaysia.

Memorandum of Understanding Signing Ceremony between CyberSecurity Malaysia and Group IB, Seri Kembangan

On April 13, 2018, a Memorandum of Understanding (MoU) was signed between CyberSecurity Malaysia and Group IB. This MoU is one of CyberSecurity Malaysia's collaborations to etablish strategic alliances with global expert companies in the area of cyber security.

The IB Group based in Russia is a company dedicated to defense and investigation of high-tech cyber crime and online fraud. The company is also active in developing software and hardware solutions for proactive cyber defense based on recent threat intelligence data.

The MoU was signed by YBhg. Dato' Dr. Haji Amirudin Abdul Wahab, Chief Executive Officer, CyberSecurity Malaysia and YBhg. Dato' Redzuan Kushairi, Advisor, Group IB and witnessed by YABhg. General Tan Sri Dato 'Seri Panglima Mohd Azumi Mohamed (Retired), Chairman of the Board of Directors, CyberSecurity Malaysia.

With this MoU, both organizations will cooperate and share knowledge in computer emergency response (CERT), cyber criminal investigations and collaborate in CyberSecurity Malaysia Collaborative Program (CCP), cyber security training and develop CERT module.

World Trustmark Alliance Annual Meeting (WTA) 2018, Shenzhen, China

On April 15 to 18, 2018, World Trustmark Alliance (WTA) 2018 Annual Meeting was organized by China's E-Business Better Service (EBS) in Shenzhen, China.

The WTA meeting discussed issues relating to trustmark membership, recent developments and directions as well as the appointment of new WTA Chairman. The meeting also nominated honorary members in recognition of their great contribution to WTA development. CyberSecurity Malaysia was represented by Hasnida Zainudin and Adlil Ammal bin Mohd Kharul Apendi from the Information Security Certification Body, CyberSecurity Malaysia.

As a WTA member, CyberSecurity Malaysia is actively involved and committed to the development and development of WTA. This direct involvement provides a new approach to design the Malaysian Trustmark certification for public and private sectors in Malaysia.

CyberSecurity Malaysia was able to strengthen the co-operation between Malaysia in general with the members of the World Trustmark Alliance organization in this meeting.

FIRST Technical Colloquia & Symposia, Amsterdam Netherland

CyberSecurity Malaysia attended the FIRST Colloquium & Symposium 2018 in Amsterdam, the Netherlands on April 16 to 18, 2018. The program organized by FIRST is a platform for delegates to share information on vulnerability issues, incidents and operational issues involving emergency response and security group.

The conference was held for three days and was attended by participants from 91 organizations including 31 FIRST members. A total of 14 titles related to cyber security and computers were presented. Among them were ransomware incident investigation, the use of more effective tools to address cyber attacks and case studies.

CyberSecurity Malaysia was represented by Faiszatulnasro Binti Mohd Maksom from Malaysia Computer Emergency Response Team (MyCERT). She delivered a presentation entitled "Addressing The Evolving Challenges Of Phone Fraud: MYCERT Case Study".

CyberSecurity Malaysia is recognized as a sensitive agency and acts proactively in co-operation to ensure secured cyber security is internationally.

17th Defense Service Asia Exhibition & Conference, Kuala Lumpur

On 16 to 19 April 2018,17th Defense Service Asia Exhibition and Conference (DSA) was held in Kuala Lumpur.

The event which was jointly organized by DSA, the Ministry of Defense, the Malaysian Armed Forces and the Royal Malaysian Police is a platform for defense professionals to gather and share ideologies on technology and current issues in defense. It is also a medium to expand its network of ventures as well as to collaborate primarily on domestic and foreign defense industry players.

YB Dato' Seri Hishammuddin Tun Hussein, the Minister of Defense officiated DSA 2018 in front of 1500 companies from 60 different countries around the world.

CyberSecurity Malaysia took part in the exhibition to promote its Malaysia's functions and roles, as well as to highlight cyber security related services.

RSA Conference 2018, San Francisco, United Stated of America

CyberSecurity Malaysia attended the RSA 2018 Conference in San Francisco, USA on April 16 to 20 April 2018. The annual conference organized by the RSA is a platform for global experts to present papers, case studies and research on ICT security.

Additionally, it is also a forum for information sharing on IT security threats, recent incidents and technologies to address ICT security threats and issues affecting the incident response operations by security forces. The conference also witnessed the presentation of mechanisms and methods to prevent the network system from being invaded by outsiders through the best security measures.

A total of 40,000 participants attended the largest conference of professional and information technology security experts worldwide.

CyberSecurity Malaysia was represented by Sharifah Roziah Mohd Kassim from Malaysia Computer Emergency Response Team (MyCERT). She became a panelist and presented in a forum entitled "Building Capacity in Global Incident Response." Other panelists were experts from US CERT, Thomas Millar and Africa CERT, Jean-Robert Hountomey.

This is an international recognition of expertise for CyberSecurity Malaysia in ICT security that is seen to be equivalent to experts from advanced countries like America, Japan, Korea and other European countries.

OpenGov Manila Leadership Forum 2018, Manila, Philippines

CyberSecurity Malaysia was invited to participate in the OpenGov Manila Leadership 2018 Forum in Manila City, Philippines on April 18 to 20, 2018.

This forum is a platform to discuss ICT-related information in the Government. It focuses on the public sector in Asia-Pacific region. It was attended by over 130 participants from various Government and private agencies in the Philippines as well as 19 overseas delegates from Malaysia, Singapore, New Zealand, Australia and the Netherlands.

yberSecurity Malaysia was represented by Wan Zulhamli Wan Abdul Rahman, Head of Strategic Research and Advisory Department. He was selected to lead the Open Gamification Table (OGT) forum which consists of four sessions. He delivered his views in the Cyber Defense session: Enhancing Data Security, Networking and Protection of Infrastructure Through Safety Governance. In addition, he also became a panelist and provided inputs on Cyber Security and Data Privacy in the Digital Age.

CyberSecurity Malaysia was able to share views, opinions and discuss strategic approaches to cyber security towards a better country, especially in the Asian region.

Memorandum of Understanding Signing Ceremony between CyberSecurity Malaysia and BAE System, Kuala Lumpur

On April 19, 2018, a Memorandum of Understanding was signed by CyberSecurity Malaysia and BAE System. The ceremony was held in conjunction with the Defense Services Asia 2018 exhibition in Kuala Lumpur.

The MoU initiates collaboration for a two-year period following the existing collaboration between the two organizations. It provides opportunities for both organizations to strengthen cooperation in research and development, information sharing as well as capacity building in cyber defense in Malaysia.

The signing ceremony was concluded by YBhg. Dato' Dr. Haji Amirudin Abdul Wahab, Chief Executive Officer, CyberSecurity Malaysia and Mr. Barry Johnson, Country Manager, BAE Systems Applied Intelligence's Malaysia, witnessed by His Excellency Paul Rennie, British Deputy Commissioner to Malaysia and YABhg. General Tan Sri Dato' Seri Panglima Mohd Azumi bin Mohamad (Retired), Chairman of the Board of Directors, CyberSecurity Malaysia.

CyberSecurity Maaysia further strengthened bilateral cooperation between Malaysia and the United Kingdom in matters pertaining to defense of the country, especially in cyber security.

21st ARTC Conference (Asian Refining Technology Conference), Kuala Lumpur

CyberSecurity Malaysia participated in the 21st ARTC Conference (Asian Refining Technology Conference) in Kuala Lumpur from April 23 to 25, 2018.

The conference was organized by the World Refining Association (WRA). It is a platform to share latest information on projects from the oil and gas sector. Most of the speakers are senior officers from Petronas and industry experts. They shared strategic information on the latest digital technology.

Dr. Solahuddin Shamsuddin, Chief Technology Officer of CyberSecurity Malaysia represented CyberSecurity Malaysia delivered a presentation titled "Cyber Security Risk Overview and Preparation Advice".

CyberSecurity Malaysia's involvement at this conference provides the opportunity to further strengthen CyberSecurity Malaysia's position as an agency leading the cyber security field within Malaysia and abroad.

ASEAN Regional Forum 2018, Kuala Lumpur

CyberSecurity Malaysia participated in the ASEAN Regional Forum 2018 (ARF) held in Kuala Lumpur from 23 to 26 April 2018.

ARF is a key forum for constructive dialogue and consultation on political and security issues that have shared interests and concerns in the Asia-Pacific region. ARF aimed to promote peace and stability in the region based on consultation and consensus.

Two important meetings were held namely the 2nd ARF Open Ended Study Group On Confidence Building Measures: To Reduce The Risk Of Conflict Stemming From The Use Of Information And Communication Technologies (ICT) and 1st ASEAN Regional Forum Inter-Sessional Meeting On Security Of And In The Use Of Information And Communication Technologies (ARF ISM On ICTs Security).

ARF 2018 was organized by the National Cyber Security Agency (NASCA) in collaboration with the Malaysian Communications and Multimedia Commission (MCMC). It was attended by all ARF participants except Bangladesh, Brunei Darussalam, Democratic People's Republic of Korea, Mongolia, Myanmar and Papua New Guinea. In addition, representatives of the ASEAN Secretariat also attended the forum.

CyberSecurity Malaysia created a new experience for its staff who participated in ARF Working Groups and Meetings.

2018 APISC Security Course, Seoul, Korea Selatan

CyberSecurity Malaysia attended the 2018 APISC Security course in Seoul, South Korea from 23 to 27 April 2018. The course was organized by KrCERT / CC, Korea Internet Security Agency (KISA) to highlight matters relating to organizational management, law, cyber incident, and etc. in the CSIRT operation.

Nur Qurratu 'Aini Binti Rohizan from Malaysian Computer Emergency Response Team (MyCERT) represented CyberSecurity Malaysia.

This course also provided an opportunity for CyberSecurity Malaysia's to exchange views in managing cyber incidents to other participants.

The Secretary and Administrative Assistant 2018 Convention, Kuala Lumpur

CyberSecurity Malaysia was invited as a panelist at the Secretary and Administration Assistant 2018 Convention organized by IRSHAD HR Consulting in conjunction with the Secretary’s Week 2018.

Among the objectives of this convention is to expose participants to the challenge of secretarial and administrative profession, where the secretary should always reflect on the performance of work and introduce the best techniques and best practices in improving work efficiency in line with the current digital transformation.

The two-day convention was attended by 150 participants comprising secretaries in various organizations. The convention was divided to three sessions that are Talk, Sharing and Interactive. CyberSecurity Malaysia was represented by Lt Col Mustaffa Ahmad C / CISO (Retired), Senior Vice President of Outreach and Capacity Building. He became a panelist at the Partnership session themed "Digital Transformation Challenge for Secretary and Administrative Staff".

CyberSecurity Malaysia was able to introduce its role and function in this convention as well as emphasizing the importance of cyber security to organizations in Malaysia.

CC Development Board / CC Executive Subcommittee - Common Criteria Recognition Arrangement Meeting, Trondheim, Norway

CyberSecurity Malaysia attended the CC Development Board / CC Executive Subcommittee - Common Criteria Recognition Arrangement Meeting in Trondheim, Norway from 24 to 26 April 2018.

The annual meeting organized by the Norway Common Criteria Scheme aimed at discussing the latest ISO issues, testing and certification of IT security as well as improving CCRA's direction. Additionally, it also discussed the promotion of technical focus groups to enable the creation of useful, realistic and internationally recognized collaboration protection profiles (cPPs).

A total of 28 member countries of CCRA with authorization including Malaysia presented in this meeting. CyberSecurity Malaysia was represented by I.D Safairis Bin Amat Noor and Wan Shafiuddin Bin Zainudin from the Information Security Certification Board.

The presence of authoritative countries such as Malaysia at each meeting is a commitment that needs to be done to identify country's standpoint in determining CCRA's direction. By order, Malaysia is expected to be the chairman of the Common Criteria Management Committee in 2019.

Career Fair & Internship Day Universiti Pertahanan Nasional Malaysia 2018, Kuala Lumpur

CyberSecurity Malaysia participated in the Career Fair and Internship Day program organized by Universiti Pertahanan Nasional Malaysia (UPNM) at the university on April 25, 2018.

UPNM's 6th program focuses on industry involvement in offering career opportunities and industrial training to UPNM students. In addition, it also creates cooperation between UPNM and government agencies involved.

CyberSecurity Malaysia introduced its field in the ICT industry that can be embraced by future UPNM graduates as well as promoted the importance of cyber security to UPNM students.