59th International Meeting on ISO/IEC JTC 1/ SC 27/ WG 1 Information Security Management System (ISMS), Gjovik, Norway

 

CyberSecurity Malaysia attended the 59th International Meeting on ISO / IEC JTC 1 / SC 27 / WG 1 Information Security Management System (ISMS) organized by the Norwegian Standards at the Norwegian University of Science and Technology, Gjovik, Norway.

This annual meeting discussed the development of international standards on the Information Security Management System (ISMS). 300 delegates from various countries including Sweden, Germany, France, United Kingdom, United States, New Zealand, Australia, Japan and China attended the meeting.

18 recommendations and 12 solutions derived in Comments Resolution Meeting (CRM) and presented at the plenary session on the last day of the meeting. All decisions of the meeting are recorded in the WG 1 Recommendations, CRM Resolutions and Acclamations document.

CyberSecurity Malaysia prove Malaysia's active role in the development of standards related to the Information Security Management System (ISMS). It also provides CyberSecurity Malaysia the opportunity to further network with our Standards bodies from various countries.

International Digital Technology Exhibition 2018 (IDTE), Ipoh, Perak

 

CyberSecurity Malaysia participated in the International Digital Technology Exhibition (IDTE) held in Ipoh, Perak from October 3 until 5, 2018. The program, organized by the Malaysian Service Providers Confederation (MSPC) with the themed "Bridging Digital Gaps in Perak" export services at regional and global levels. At this exhibition, CyberSecurity Malaysia promotes professional training programs through CyberGuru and Global ACE Scheme services.

IDTE was officiated by Yang Berhormat Tuan Hasnul Zulkarnain Abd Munaim, Chairman of Communications, Multimedia and NGOs, Perak State Government. Among the organizations involved in the exhibition are the Malaysian Board of Technologist (MBOT), Malaysia Productivity Corporation (MPC), Malaysia External Trade Development Corporation (MATRADE), SMECorp and other government agencies.

In IDTE exhibitions, the Global Accredited Cybersecurity Education Scheme (Global ACE Scheme) was introduced to foster the growth of world-class cyber security professional’s certification program and internationally recognized competent workforce.

Awareness Talk In Conjunction With Hari Mesra Integriti 2018 CyberSecurity Malaysia, Seri Kembangan

 

On October 4, 2018, CyberSecurity Malaysia organized Hari Mesra Integriti 2018. The program was in line with the direction of the Audit, Governance & Integrity Committee (AGI) to instill integrity in the workplace through the implementation of current internal controls, integrity awareness talks and religious activities for staff.

During this program, Mr. Kamaruddin Bin M. Ripin, Senior Assistant Commissioner of Malaysian Anti-Corruption Commission (MACC) delivered a talk entitled 'Integrity: Issues And Challenges'.

Various activities were held to encourage interest and understanding among CyberSecurity Malaysia's staff on integrity issues such as Integrity Quizzes on Whistleblowing Policy, Gift Policy and Employee Handbook; briefing on the Gift Policy Code of Conduct, Whistleblowing Policy; Integrity Quiz Pop, Crossword Puzzle and Dart of Integrity.

Hari Mesra Integriti 2018 received an overwhelming response from CyberSecurity Malaysia’s staff. The program motivated the staff provide high quality services when performing their daily duties based on the principle of corruption-free and practicing noble values that can convince stakeholders, partners and customers.

International Cyber Security Briefing “c0c0n-XI”, Kochi, India

 

CyberSecurity Malaysia was invited to the Cyber Security Briefing "c0c0n-XI" in Kochi, India on October 5 and 6, 2018. The "c0c0n-XI" conference is a cyber security conference organized by the Kerala State Police in partnership with The Society for the Policing of Cyberspace (POLCYB) and The Information Security Research Association - India Chapter (ISRA).

The conference is a platform for discussion, exhibitions, education and awareness on the latest trends in cyber security as well as hi-tech crime in South Asia, particularly in India. It is also a platform for security forces, governments, industry leaders, students and professionals to get immediate exposure on the latest technological advances in cyber security.

CyberSecurity Malaysia was invited as a speaker at this conference where Fazlan Abdullah, Head of the Department of Government Relations delivered a presentation entitled "Malaysia's Cyber Security Policy & Strategies." It is estimated that more than a thousand participants, especially from Indian countries who attended the conference.

CyberSecurity Malaysia opened up opportunities to research the case studies and best practices in cyber security implementation in the organization, sharing experiences on implementing the National Cyber Security Policy, establishing collaboration with agencies and seminar participants for strategic cyber security and exploring potential collaboration opportunities with agencies and organization from Indian state.

OIC-CERT Cyber Security Journal Workshop, Port Dickson, Negeri Sembilan

 

CyberSecurity Malaysia organized the OIC-CERT Cyber Security Journal Workshop on 6 and 7 October 2018 at Port Dickson, Negeri Sembilan.

The workshop was held to expose the Project Team on the preparation of manuscripts to further enhance the production of research papers in the field of cyber security for quality and can be published as a journal on the publication of the "OIC-CERT Journal of Cyber Security".

This two-day workshop was facilitated by Ts. Dr. Zahri Yunos from CyberSecurity Malaysia and Professor Dr. Rabiah Ahmad from the Technical University of Malacca (UTeM) and attended by 20 Project Team members from six local universities.

A total of seven journals were selected to be presented at the Academic Colloquium during the OIC-CERT 2018 Annual Conference to be held in November 2018 in Iran, among others:
i. SBPP: Statistical-Based Privacy-Preserving Approach for Data Gathering in Smart Grid
ii. A Hybrid Approach to Trust Inference in Social Networks
iii. Vulnerability Assessment and Penetration Testing of Virtualization
iv. Safeguarding Malaysia's Cyberspace against Cyber Threats: Contributions by CyberSecurity Malaysia
v. Developing a Competency Framework for Building Cybersecurity Professionals
vi. Preventing Reflective DLL Injection on UWP Apps
vii. Crawler and Spiderin usage in Cyber-Physical Systems Forensics

he workshop is a platform for the Project Team to work together in producing quality research papers to be published as journals. The publication of the journal will be able to contribute to the enhancement of cyber security science knowledge to society.

Cyber Crime Conference 2018, Moscow, Russia

 

CyberSecurity Malaysia was invited to the CyberCrime Conference 2018 organized by the Group IB Russia in Moscow, Russia. The CyberCrime Conference 2018, held on October 9 2018 is an annual conference that includes the participation of international IT security experts comprising Industry, Government and Law Enforcement.

This year's conference focuses on current international cyber crime trends, cyber threat predictions, analysis of hacking groups and computer networks. The conference also discussed information, experiences and measures taken to address cyber threats in various sectors.

More than 1,000 IT security experts from Europe continental, the Middle East and Asia attended this conference. CyberSecurity Malaysia was represented by Sharifah Roziah Mohd Kassim from the Malaysian Computer Emergency Response Team (MyCERT) who talked about "Cyber Threat Intelligence Initiatives in Malaysia".

The delegates also visited CERT Group IB Lab and Operation Center and was briefed on the analysis and activity carried out at the lab. Group IB also conducted meetings to discuss cyber threat investigations, techniques and advanced tools used by cyber intruders in high-profile cases in 2018.

CyberSecurity Malaysia's increased its visibility in the international arena as the leader in cyber security field and proactively engaged in addressing cyber threats in the Asian region.

CODEBALI International Conference And Exhibition 2018, Bali, Indonesia

 

CyberSecurity Malaysia attended the CodeBali 2018 international conference and exhibition in Bali, Indonesia from 9 to 12 October 2018. This annual conference and exhibition is organized by the Indonesia Security Incident Response Team on the Internet Infrastructure Coordination Center (ID-SIRTII / CC) under the National Cyber and Crypto Agency, Indonesia since 2015.

The 4th CodeBali 2018 was attended by 500 participants from Indonesia, ASEAN member countries, Japan and countries from the Middle East. CyberSecurity Malaysia delegates were General Tan Sri Dato' Seri Panglima Mohd Azumi Mohamed (Retired), Chairman of the Board of Directors who was invited to deliver a keynote entitled "Cybersecurity and World Order-Confrontation or Partnership"; Ts. Dr. Zahri Yunos, Chief Operating Officer, who was invited as a panelist for "Overcoming the Emerging Cyber Threat and Building National Cyber Resilience", while Lee Hwee Hsiung, Head of the Cyber Security Professional Development Department, presented at the FIRST TC session titled "Global Accredited Cybersecurity Education (ACE) Scheme: The Need For Security Experts ". In addition, Dr. Zahri also shared his experiences in the implementation of the National Cyber Security Policy with National Cyber and Crypto Agency employees.

CyberSecurity Malaysia further strengthened its position as a technical agency in the field of cyber security and is capable of enhancing visibility in the international arena.

Malaysian Commercialization Year (MCY) @ International Greentech and Eco Products Exhibition and Conference (IGEM) 2018, Kuala Lumpur

 

CyberSecurity Malaysia participated in the Malaysian Commercialization Year (MCY) @ International Greentech Exhibition and Eco Products Exhibition and Conference (IGEM) 2018 organized by the Ministry of Energy, Science, Technology, Environment and Climate Change (MESTECC) at the Kuala Lumpur Convention Center (KLCC) from 17 to 20 October 2018.

MCY 2018 provides opportunity for product and technology finalists to showcase their creation. CyberSecurity Malaysia's Smart Card Reader Assessment Services developed by internal expertise with focus on Smart Card security was successfully selected as one of MCY 2018 finalists.

CyberSecurity Malaysia was able to network with potential customers from the industry to introduce its products and services in the future.

Elastic Security Analytics Workshop for Cyberi3 Project, Washington DC, Amerika Syarikat

 

CyberSecurity Malaysia participated in the Elastic Security Analytics Workshop from October 19 to October 2018 in Washington DC, USA.

The Elastic Security Analytics is an advanced search technology used to meet the needs of analyzing Great Data. This technology is well-known among the Greater Data community and Analytical Data as it encompasses 3V, Volume, Velocity and Veracity data. This technology is needed to increase the supply of digital forensic services in addressing cyber threats through the latest project known as Cyberi3.

The workshop was attended by three CyberSecurity Malaysia officers comprising Ts. Dr. Aswami Fadillah Mohd Ariffin, Senior Vice President, Cyber Security Response Service Division, Ts. Mohd Zabri Adil Talib and Ts. Mohd Zaharudin Ahmad Darus from Digital Forensic Department.

CyberSecurity Malaysia was able to meet the requirements in terms of expertise, function and system operation to meet the specification of service offerings under the Cyberi3 project and eventually improve the quality of cyber security responsiveness service division in terms of security analysis in general.

Conference & Annual General Meeting of Asia Pacific Computer Emergency Response Team (APCERT), Shanghai, China

 

On 21 to 24 October 2018, the Asia Pacific Computer Emergency Response Team (APCERT) Conference and Annual General Meeting 2018 was held in Shanghai, China.

APCERT is a joint venture of Asia Pacific in cybersecurity, which currently 30 cyber emergency response teams (CERTs) or cyber security related agencies from 21 countries in the Asia Pacific region. CyberSecurity Malaysia is a member of APCERT since the establishment of APCERT in 2003 and was appointed as APCERT Deputy Chairman for the 2017/2018 session.

In 2018, the program was jointly organized by the National Computer Network Emergency Response Technical Team I Coordination Center of China (CNCERTICC) and the Asia Pacific Computer Emergency Response Team (APCERT). The purpose of this is to discuss matters relating to APCERT's policies, operations and strategic direction which cover the following:-
i. Desktop Interactive Discussion sessions;
ii. APCERT Steering Committee Meeting;
iii. APCERT Annual General Meeting; and
iv. APCERT Annual Conference 2018

CyberSecurity Malaysia participated in the following activities: -

i. Head of Malware Mitigation Working Group by Fathi Kamil Mohad Zainuddin from Malaysia Computer Emergency Response Team (MyCERT);
ii. Present at Technical Workshop titled 'Digital Forensics with a Focus on the Cloud' by Fathi Kamil Mohad Zainuddin and Zuhair Abd Rahman from MyCERT;
iii. Attended the Steering Committee Meeting as APCERT Deputy Chairman by General Tan Sri Dato' Seri Panglima Mohd Azumi Mohamed (Retired), Chairman of Borad of Directors;
iv. Mohd Shamir Hashim, Senior Vice President, Government and International Relations Division;Presented on CyberSecurity Malaysia's activities as APCERT Deputy Chairman at a closed session attended by APCERT members;
v. Presentation papers titled 'Splunking Honeynet Data (LebahNET)' by Zuhair Abd Rahman attended by 150 participants.

CyberSecurity Malaysia seeks to highlight the leadership of this agency in the international arena. This is proven when CyberSecurity Malaysia was reappointed as APCERT Deputy Chairman for 2018 - 2019 terms. This is also a commitment demonstrated by CyberSecurity Malaysia in support of APCERT's objectives.

The program also provides space for knowledge sharing and exchange of information security as well as strengthening the level of trust among APCERT members in managing the cyber security field in the region.

SO/TC307: Blockchain and Distributed Ledger Technologies Meeting and International Forum – “Blockchain in the Digital Economy”, Moscow, Russia

 

CyberSecurity Malaysia attended the Blockchain and Distributed Ledger Technologies and International Forum - Blockchain in the Digital Economy in Moscow, Russia from 21 to 26 October 2018 organized by the International Organization for Standardization (ISO).

The SO / TC307 meeting in Moscow was the fourth since the Technical Team (TC) 307: Blockchain and Distributed Technology established in 2016. The purpose of the meeting was to discuss matters in the establishment of TC 307 standard documents that impacted the standard group ISO / IEC JTC 1 / SC 27 IT Security Techniques.

The meeting also updated the draft ISO documents based on comments from experts around the world, obtaining votes and approvals relating to the draft produced and updating the activities and continuity of the working group, study group and further developing the direction of the group.

Other than Malaysia, these meetings were also attended by blockchain experts and representatives of organizations and departments from various countries, including Russia, Australia, China, India, Japan, Korea, Singapore, Thailand, United Kingdom, United States, Spain, Italy, others. CyberSecurity Malaysia was represented by Ts. Dr. Solahuddin Shamsuddin, Chief Technology Officer, Ts. Dr. Maslina Daud, Senior Vice President, Cyber Security Proactive Service and Hazlin Abdul Rani, Head of Cryptography Department.

CyberSecurity Malaysia delegates also attended an international forum titled "Blockchain in the Digital Economy". Panel discussed on application-related issues, use, case studies and blockchain effects in the digital economy.

The involvement of CyberSecurity Malaysia in the development of Blockchain technology is capable of enhancing skills in the field of cyber security in Blockchain technology in Malaysia. Contributions in the development of standard documents especially those involving the field of cyber security have further increased credibility as well as exposing CyberSecurity Malaysia to the latest technology, developments and updates on blockchain.

12th ENISE International Meeting On Information Security 2018, Leon, Sepanyol

 

CyberSecurity Malaysia attended the International Conference on Information Security 2018 – 12th ENISE on 23 and 24 October 2018 in Leon, Spain.

The annual conference organized by the Spanish National CyberSecurity Institute (INCIBE) is a platform for meeting and discussions for cyber security practitioners around the world. It reviews and discusses latest issues of cyber security and promotes business discussions as well as IT security-related investments.

More than 2,000 delegates from diverse backgrounds such as security experts, academicians, government officials, businessmen and IT professionals participated in this conference. CyberSecurity Malaysia was represented by Megat Muazzam Abdul Mutalib, Head of Computer Emergency Response Team Malaysia (MyCERT). He became a panelist at a discussion entitled "Initiatives of international collaboration in the field of incident notification".

CyberSecurity Malaysia was able to foster networking, exchange information and update information with delegates from various countries in understanding key issues related to technical crimes committed by cyber criminals.

17th International Common Criteria Meetings And Conference, Amsterdam, The Netherlands

 

CyberSecurity Malaysia attended the 17th Common Criteria (CC) International Conference and Conference in Amsterdam, Netherlands from 24 to 1 November 2018.

The Common Criteria International Conference (ICCC18) organized by The Netherlands Common Criteria Scheme was held to discuss issues relating to safety assessment and improvement on IT products. It is also a platform to strengthen collaborative networks, technical discussions and sharing experience sharing among countries in promoting the Common Criteria (CC) program as the third-party verification criteria in the IT industry.

Annual Common Criteria Meetings held twice a year discuss in detail the latest ISO issues, IT security testing and certification, improvements and actions in strengthening the Common Criteria assessment. 28 countries that are also members of the Common Criteria Recognition Arrangement (CCRA) including Malaysia attended this meeting.

CyberSecurity Malaysia delegates were led by Dato' Ts. Dr. Amirudin Abdul Wahab, Chief Executive Officer and accompanied by Wan Shafiuddin Bin Zainudin and I.D Safairis Bin Amat Noor from the Information Security Certification Body and Zarina Musa and Ahmad Dahari Jarno from the MySEF Department.

At the ICCC18 conference, Zarina Musa delivered a presentation entitled "IPSA: An Adaptation of Common Criteria for Malaysian Local Market" while Ahmad Dahari Jarno talked on "Guide for Evaluator in CC Evaluation: Tips and Tricks Malaysia Lab Style".

CyberSecurity Malaysia's provided opportunities for collaboration in training services based on local scoring and development guidelines for overseas CC laboratories based on IPSA and TSA services. Additionally, it also opened up new opportunities for co-collaboration with the European Regional laboratory which the capability to build Profile Profile (PP) and Collaborative PP (cPP).

Working Visit of the Organization Risk Management Division and ICT Security Division, Inland Revenue Board of Malaysia (IRBM) to CyberSecurity Malaysia, Seri Kembangan

 

On October 30, 2018, CyberSecurity Malaysia welcomed delegates from the Inland Revenue Board (IRB) led by Mr Mohd Khairul Adne Mat Hussin, Senior LHDN Executive and five other officers.

This visit aims to familiarize CyberSecurity Malaysia, get information on the services and expertise as well as discuss strategic chances of collaboration between IRBM and CyberSecurity Malaysia in cyber security.

The IRB delegates were welcomed by Mohd Shamir him, Senior Vice President, International and Government Relations Division. LHDNM delegates were briefed on the corporate information, services and expertise offered by CyberSecurity Malaysia. They also discussed on the realization of cooperation between IRB and CyberSecurity Malaysia which will be signed through a cooperation agreement. LHDNM delegates also visited facilities in Digital Forensic Laboratory.

2nd Digital Citizenship Initiative Workshop (CyberSAFE Beyond 2020), Putrajaya

 

CyberSecurity Malaysia organized 2nd Digital Citizenship Initiative Workshop (CyberSAFE Beyond 2020) on 30 and 31 October 2018 in Putrajaya.

The workshop was held to design, raise awareness and understanding on the issue of Digital Citizenship and monitor the development of Digital Toolkit (Instrument) Instruments. In this workshop, stakeholders were able to understand the concept of Digital Citizenship and the appropriate method to use the materials to implement Digital Citizenship concept so end users can understand this concept clearly.

15 participants representing various government agencies and industries including Education Technology Division (BTP), Ministry of Education, Malaysia; Institut Aminudin Baki, Parent & Teacher Association, Majlis Amanah Rakyat (MARA) and Tech Capacity attended the workshop.

Launching Ceremony Of The National Policy On Industry 4.0, Kuala Lumpur

 

On October 31, 2018, Launching Ceremony Of The National Policy On Industry 4.0 was held at MITI Tower, Kuala Lumpur and officiated by YAB Prime Minister, Tun Dr. Mahathir Mohamad.

The launch of IR4.0 policy is the Government's initiative in recording country's direction to address the various issues of the manufacturing industry in relation to the hazardous environment, health and safety of workers, efficiency in managing supply networks, waste reduction, and time saving with efficient delivery system management.

The rapidly evolving and converging Industry technology of 4.0 enhanced human capabilities through intelligence in manufacturing and autonomous robots through the transfer of information technology used through cloud computing, system integration and the Internet of Things (IoT). This situation makes cyberspace a critical aspect and needs attention from the onset of centric tool development along with a safe IT environment.

Ts. Dr. Solahuddin Shamsuddin, Chief Technology Officer represented CyberSecurity Malaysia as a panelist at a discussion session entitled "Breaking The Barriers To Pursue Industry4WRD - Addressing Common Challenges To Embark On Industry 4.0 Journey". CyberSecurity Malaysia also became an exhibitor in the program to promote cyber security services including the Global ACE Scheme.

MITI's invitation to CyberSecurity Malaysia is recognition of the agency's role as the leader in cyber security in Malaysia. Through this participation, CyberSecurity Malaysia is able to disseminate information on the cyber environment, gain the opportunity to promote services and network with other government agencies.