Malaysia Cybersecurity Strategy

August 2020

View the original document

Strategies and Action Plans

The Malaysia Cyber Security Strategy 2020-2024 (MCSS) is a comprehensive framework aimed at bolstering the country’s cybersecurity landscape. It was developed in response to the increasing cyber threats and the need to protect the nation’s digital assets. The strategy outlines key areas of focus to ensure a secure, resilient, and trusted cyberspace in Malaysia.

1. Strategic Thrusts and Objectives

The MCSS is built on five strategic pillars, each with specific objectives designed to enhance Malaysia’s cybersecurity posture:

  1. Strengthening the National Cybersecurity Governance and Ecosystem:
    • Objective: Establish robust governance structures and a resilient ecosystem to manage cybersecurity risks effectively.
    • Key Actions:
      • Develop clear policies and regulatory frameworks.
      • Enhance the capabilities of national cybersecurity agencies.
      • Foster public-private partnerships to improve cybersecurity resilience.
  2. Improving the Management of National Cyber Risks:
    • Objective: Identify, assess, and manage cybersecurity risks at the national level to protect critical infrastructures.
    • Key Actions:
      • Conduct regular risk assessments.
      • Implement risk management frameworks for critical sectors.
      • Develop incident response plans and conduct simulations.
  3. Enhancing the Protection of Critical National Information Infrastructure (CNII):
    • Objective: Safeguard critical information infrastructures essential for national security, economic stability, and public safety.
    • Key Actions:
      • Implement security measures and standards for CNII.
      • Conduct regular audits and vulnerability assessments.
      • Promote the adoption of cybersecurity best practices across industries.
  4. Fostering a Culture of Cybersecurity and Capacity Building:
    • Objective: Increase cybersecurity awareness and build a skilled workforce capable of addressing emerging cyber threats.
    • Key Actions:
      • Launch public awareness campaigns on cybersecurity.
      • Incorporate cybersecurity education into academic curriculums.
      • Provide specialized training and certification programs for cybersecurity professionals.
  5. Strengthening International Cooperation:
    • Objective: Enhance collaboration with international partners to address cross-border cyber threats and promote global cybersecurity standards.
    • Key Actions:
      • Participate in international forums and initiatives.
      • Establish bilateral and multilateral agreements on cybersecurity cooperation.
      • Share intelligence and best practices with global partners.