The Need for Enhanced and Inclusive Cyber Information Sharing in Malaysia

Hello friends,

This week's article will take a slightly different approach. It's going to be a bit longer than usual and will resemble an opinion paper in style. I'm not exactly sure why I felt compelled to cover this topic in this week's publication, but perhaps I'm feeling nostalgic.

In an era where digital threats loom large and cyber adversaries innovate relentlessly, the strategic value of information sharing within the cybersecurity space cannot be overstated. My two decades in IT and cybersecurity, encompassing roles in strategy, operations, supervision and risk management, have deepened my understanding of the need to enhance information sharing mechanisms. I was fortunate to lead a team pivotal in establishing Malaysia's financial sector cyber threat intelligence sharing platform and fostering regional collaboration across ASEAN central banks, which included cyber information sharing. My learning from these experiences underscores the critical importance of robust, strategic information exchange.

Historical Context and Current State in Malaysia

Fifteen years ago, the National Cyber Security Policy (NCSP) was established, marking a significant step forward for Malaysia’s cybersecurity infrastructure. This policy highlighted the critical role of information sharing, through its first and eighth thrusts, aimed at fostering a cohesive cybersecurity environment. Yet, the effectiveness of platforms like the National Cyber Security Agency’s NC4 and CyberSecurity Malaysia’s MyCERT in truly facilitating an exchange that meets both technical and strategic needs remains debatable. These entities have functioned well in disseminating threat information but fall short in fostering a dynamic, two-way exchange essential for adaptive security postures.

Furthermore, while initiatives like MyCERT’s MISP project aim to encourage voluntary participation, they often lack visibility and the necessary strategic focus that could transform raw data into actionable intelligence. Despite these frameworks, several challenges persist. Legal and regulatory barriers, privacy concerns, and the fear of inadvertent information leakage complicate the landscape.

Like the financial sector, other sectors in Malaysia need to ramp up their cyber information sharing and expand it to include cross-sectorial exchanges

Comparison with ASEAN Initiatives

Looking beyond our borders, the ASEAN Cybersecurity Cooperation Strategy offers a contrast with its inclusive approach to information sharing among national CERTs. This initiative is designed to enable collective responses and readiness for future cyber threats. Notably, Singapore has set a regional benchmark with its diverse information-sharing platforms, such as the OT-ISAC, which caters specifically to the operational technology sector, and the Monetary Authority Singapore’s ongoing collaborations with FS-ISAC. These efforts highlight the potential for targeted, sector-specific approaches that could be replicated and adapted within Malaysia.

Analysis of New Legislative Developments

The newly approved Cyber Security Bill 2024 introduces provisions that mandate information sharing in critical national security scenarios. This legislation empowers the NACSA’s Chief Executive to disseminate essential cybersecurity intelligence to national and sectoral leads, facilitating a legally sanctioned pathway for information exchange. However, the implementation of these provisions will require careful consideration of the operational, cultural, and strategic challenges that have historically hindered information sharing practices.

Strategic Recommendations for Enhancing Information Sharing

To cultivate a more resilient cybersecurity ecosystem, I advocate for a multilayered strategy that emphasizes public-private partnerships and leverages Malaysia’s vibrant local information security community. The establishment of a multistakeholder platform, independent of direct governmental control, could encourage broader participation and innovation. Such platforms should not only facilitate technical exchanges but also support strategic insights that align with national security objectives.

Additionally, the role of professional associations and local chapters, like rawSEC, ISC2 and ISACA, is pivotal. These groups should transcend their traditional networking functions to become central to national information sharing strategies, enabling continuous professional development and the dissemination of best practices.

Implementation Challenges and Mitigation Strategies

Adopting these recommendations will not be without challenges. Overcoming the inertia of existing bureaucratic processes, addressing privacy concerns, and building trust among a diverse set of stakeholders will be essential. Practical steps can include phased implementations, starting with less sensitive information types and gradually expanding as trust and mechanisms are established.

Conclusion and Call to Action

As we stand at the crossroads of digital transformation and growing cyber threats, the need for a proactive and comprehensive approach to information sharing has never been more urgent. The Malaysian government, along with private sector leaders and community stakeholders, must seize this opportunity to redefine cybersecurity information sharing practices. By fostering an environment of cooperation and trust, Malaysia can not only defend against current threats but also anticipate and mitigate future vulnerabilities.

That’s all for this week, folks.

Cheers!
Sivanathan