Info security plan for critical agencies
6 August 2010 (The Star)

KUALA LUMPUR: All critical government agencies must obtain information security certificates by 2012 to ward off cyber threats and attacks, said Minister in the Prime Minister's Department Datuk Seri Nazri Aziz.

He said the Cabinet decided on Feb 24 that these agencies must obtain the Information Security Management System (ISMS) certification within three years to ensure that they were ready to face cyber threats and attacks.

"They will have to meet international security procedures and standards before they can get the certificate from Sirim," he told reporters after closing the Third National Cyber Crisis Exercise here yesterday.

The agencies in the 10 critical sectors were those in transportation, banking and finance, technology and communication, defence and security, water, energy, health, government, food and agriculture.

Nazri said security did not only involve physical threats but also those in cyber space.

"Any threat against our ICT or critical national information infrastructure can affect national security and our country's social, economic and political stability.

"The National Security Council has set up the National Cyber Crisis Management Plan to identify possible cyber threats and attacks and find ways to counter them," he said.

CyberSecurity Malaysia chief operating officer Zahri Yunos said the most worrying threat was distributed denial of service (DDOS) attacks.