Information Security Certification Body

Expanding and demonstrating professional expertise from encounters with new experiences and an endlessly changing horizon…

Information Security Certification Body or ISCB is a department within CyberSecurity Malaysia that manages certification services focusing on the information security. ISCB provides certification services against international standards and guidelines.


The certification services include:

  • Malaysian Common Criteria Evaluation & Certification (MyCC) Scheme – evaluate and certify the security functions of ICT products based on the international standard ISO/IEC 15408 also known as Common Criteria. MyCC Scheme provides a model for licensing (government and commercial) security evaluation facilities known as Malaysian Security Evaluation Facility (MySEF) to conduct the security evaluations of ICT products, systems and protection profiles against the Common Criteria standard.


  • CyberSecurity Malaysia Information Security Management System Audit and Certification (CSM27001) Scheme – certify organisation’s Information Security Management System (ISMS) scope based on the MS ISO/IEC 27001 also known as ISMS.


  • Malaysia Trustmark for Private Sector (MTPS) - validate the e-Business website security, legality, and good e-Business behaviour under the MTPS programme based on the Asia-Pacific Trustmark Alliance (ATA) requirements and scope of the MTPS offered.

The results of this evaluation and auditing are certified by the ISCB Department. For more detail, please visit MyCC's related websites:

- -