Critical information infrastructure protection requirement for the Malaysia public sector
Malaysia Public Sector (MPS) organizations span laterally within all ten critical sectors outlined in the National Cyber Security Policy (NCSP). Critical Information Infrastructure Protection (CIIP) initiatives are driven by the NCSP strategic thrusts and further executed at the sectoral level. Howe...
Saved in:
| Main Authors: | , |
|---|---|
| Format: | Conference or Workshop Item |
| Language: | English |
| Subjects: | |
| Online Access: | http://eprints.uthm.edu.my/5140/1/KP%202020%20%28103%29.pdf http://eprints.uthm.edu.my/5140/ http://10.1109/ICIMU49871.2020.9263397 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | Malaysia Public Sector (MPS) organizations span laterally within all ten critical sectors outlined in the National Cyber Security Policy (NCSP). Critical Information Infrastructure Protection (CIIP) initiatives are driven by the NCSP strategic thrusts and further executed at the sectoral level. However, a dedicated CIIP framework for the MPS is currently lacking thus giving an opportunity for research in this area. This paper explores current CIIP requirements pertinent to MPS sectoral needs using a qualitative approach. The method used is comparative analysis. Resources and reference materials involve international organizations requisites, key national policy documents, published official directives and circulars related to the MPS CIIP. The study findings have shown that risk management and resilience are among the emerging themes. A total of 21 external strategic requirements and 25 available internal resources are identified. A comparison of MPS Cybersecurity Framework (RAKKSSA) against NIST Cybersecurity Framework is also established to highlight CIIP compatibility. For future work, five recommendations are proposed as a guideline for developing MPS CIIP |
|---|