Securing our nation
26 October 2010 (The Malay Mail)
Written by AMIR HAFIZI

It would be nice if cyber security is managed by a bunch of 14-year-olds who wear Star Wars T-shirts. However, the reality is that there are big government bodies that do that in Malaysia.

One of the head honchos is Lt Col Husin Jazri (ret) who is CyberSecurity Malaysia's (CSM) chief executive officer.

Now, CSM is Ministry of Science, Technology and Innovation's (MOSTI) agency in charge of Malaysia's cyber security.

The well-dressed man was available for a quick interview at the Press conference for CyberSecurity Malaysia Awards, Conference and Exhibition 2010 (CSM-ACE 2010) recently.

Themed 'Securing Our Digital City', CSM-ACE 2010 brings together the most influential and innovative minds in business, government and academia; including key information security industry players to exchange policies, ideas and technology.

There is a reason why CSM goes through all this trouble.

"Cyber security is vital for national security as well as creating a platform and infrastructure for a fast-growing industry

Apparently, according to the Colonel, Malaysia suffered severe worm attacks in 2002. Networks experienced slower speeds and some ATMs were rendered inoperable.

"Over the years, the number of threats has increased, with new forms of cybercrimes such as identity theft. The fact that these crimes are not prevalent and not yet widespread in Malaysia may be simply because the steps everyone has taken to secure Internet transactions here," said Husin.

Another side of the Cyber Security issue are the economic advantages.

"The advantage of cyber security is that it promotes high-income growth industries, creating high-level jobs in niche services.

"In the UK, they are investing £1 billion (RM4.8 billion) in cyber security - and that's just one country. As the world moves to a more computerised era, more and more areas, communities and nations, as well as more money, will be poured into cyber security," he said.

In reality, there are bigger markets for ICTmanpower and cyber security development. India, for example, has many times the number of programmers than in Malaysia. China is also flexing its muscle, not to mention other countries in the region. At first glance, Malaysia may seem at a disadvantage, but Husin does not believe so.

"Malaysia is very competitive. We can position the country as a hub, because we have so many Malaysians who can break into multiple markets like the Middle East, China, India and the rest of Asia," he said. "There are Malaysians of Chinese, Indian and Arab descent. We can speak multiple languages and there is no reason for Malaysia not to be a cyber security hub for the South East Asian, or the Asia-Pacific region."

Further according to him, investments in Malaysia for cyber security can be done to create and promote product development, research and development, services, consultation and education. Of particular interest is developing a 'standard system' for applications, so that any application can be vetted properly and sport trusted certification.

"Through linked parties, CSM is involved in certifying 30 apps while we have identified 90 more apps being developed as we speak, catering to cyber security," said Husin.

The CSM-ACE will reflect what he said.

The main conference, awards and exhibition will also incorporate 12 satellite events. CSM-ACE 2010's main conference will be held today and tomorrow. The conference is expected to draw over 1,000 participants both locally and internationally and bring together some of the most influential and innovative minds in business, government and academia; including key information security industry players to exchange policies, ideas and technology expertise.

Conference speakers include Menteri Besar Perak, Datuk Seri Dr Zambry Abdul Kadir; Professor Abu Bakar Munir,professor of law, University of Malaya; Professor Benoit F. Morel of Carnegie Mellon University; Kenneth Geers or the Cooperative Cyber Defence Centre of Excellence and Darin Anderson, chief operating officer, chairman Steering Committee ESET, LLCC(Securing Our eCity).

Meanwhile, the CSM-ACE 2010 exhibition on information security technologies will run from today until Oct 28. The CSM-ACE 2010 exhibition will be open to the general public on Oct 27 and 28. Admission is free.

The by invitation-only welcome reception, gala dinner and Malaysia Cyber Security Awards 2010 will be held tomorrow.The awards recognise the best of the best in ITsecurity implementation and best practices in the country. Check out the list of awards in the sidebar.

For more detail on each event and to register as a delegate, visit www.csm-ace.my.

List of awards being given out at the CSM-ACE during the gala night:

Supply (Industry) Category

Managed Security Service Provider of the Year

Service provider based in Malaysia, that has demonstrated outstanding growth and performance in information
security services in 2009.

Service provider that provides hosted services, CPE-based services and assessment/consulting services.

Education and Training Provider of the Year

Education and training provider that has shown exemplary growth and performance in 2009.

The trainings include security architecture advisory, security product training course, international standards training
(ISMS/DRP/BCP) and compliance and risk training.

Safety Outreach Provider of the Year

Industry body that has shown exemplary commitment to the cause of Risk Management & Information Security, such as having played an effective role in improving the understanding and importance of information security amongst citizens and businesses, created best practice frameworks, organised seminars and participated in policy formulation that has furthered the cause of information security in Malaysia.

Innovative Company of the Year
Malaysian company that has shown excellence in new products/services and technologies within the industry.

The recipient company should have demonstrated innovation in its portfolio of existing and emerging products and technologies.

Demand (Corporate/End-User) Category

Information Security Project of the Year
Project successfully implemented in the year 2009 that involved risk management, data asset protection, regulatory compliance, privacy and network security performance.

Information Security Organization of the Year
Organisation that has shown exemplary Information Security Governance framework and demonstrated the business value of investing in information security in Malaysia

Organisation that has effectively implemented and adhered to international standards and best practices, such as ISO27001 and ISMSguidelines.

Information Security Visionary of the Year - CXO, Academician or Student
This Award will have three sub-categories:

CxO
A CIO/CSO/Compliance officer or equivalent, who has been instrumental in driving the information security vision of
his company by aligning security strategy with business strategy.

Academician
An academician who has been instrumental in driving the information security vision of the nation.

Student
A student of under-/post-grad or doctoral programme who has been instrumental in driving the information security
vision in the nation.