Loading...
Loading...
Malaysia's Cyber Security Act 2024 (Act 854) mandates cybersecurity requirements for National Critical Information Infrastructure (NCII). We help you comply.
The Cyber Security Act 2024 (Act 854) establishes Malaysia's legal framework for protecting National Critical Information Infrastructure (NCII) from cyber threats.
Administered by the National Cyber Security Agency (NACSA), the Act mandates that operators of critical infrastructure implement comprehensive cybersecurity measures and undergo regular assessments by licensed providers.
Non-compliance penalties: Fines up to RM 500,000 and/or imprisonment up to 10 years for serious violations.
Conduct regular cybersecurity risk assessments to identify threats and vulnerabilities to NCII systems.
Implement appropriate cybersecurity measures based on risk assessment findings.
Report cybersecurity incidents to NACSA within prescribed timeframes.
Undergo periodic cybersecurity audits by licensed service providers.
Ensure personnel handling NCII systems meet security clearance requirements.
Maintain incident response and business continuity plans for NCII systems.
As an applicant under Malaysia's CSSP licensing regime, we deliver cybersecurity assessments aligned to NACSA requirements for critical infrastructure operators.
Evaluate your current security posture against NACSA requirements and identify compliance gaps.
Penetration testing services aligned to NACSA requirements for critical infrastructure systems (CSSP licence application submitted).
Comprehensive security audits meeting NACSA standards and reporting requirements.
24/7 incident response services with NACSA-aligned reporting capabilities.
Work with a CSSP licence applicant to meet your cybersecurity obligations under the Cyber Security Act 2024.