Malaysia Cybersecurity Laws

The Government of Malaysia is working towards setting up a national Cybersecurity Commission and amending laws on protecting personal data to counter scammers. There is an urgent call for law on Cybersecurity to ensure all aspects of the issue are complete and in place. Having a specific Cybersecurity law would allow the National Cybersecurity Agency (NASCA) of the National Security Council to have clear powers to monitor and enforce laws pertaining to Cybersecurity.

This Cybersecurity law implementation plan came timely as Malaysia recently fell on a few critical Cybersecurity threats. One of the most significant weaknesses in the jurisdiction for cybersecurity incidents in Malaysia is that organizations are not legally required to report any data breaches or cyber incidents they face. The issue has been highlighted numerous times in many conferences in the country, with cybersecurity vendors and organizations highlighting this as a critical concern regarding Cybersecurity.

Recognizing the importance of Cybersecurity, the government, through its Malaysia Cyber Security Strategy (MCSS) 2020-2024, allocated US$434 million to step up the national cybersecurity preparedness and upgrade the country’s cybersecurity measures. This creates opportunities for U.S. Cybersecurity companies to sell their products and services in Malaysia, especially to Small and medium-sized enterprises (SMEs) and financial institutions. 

To learn about opportunities in this sector, contact Commercial Specialist Kisok Arumagam at offiice.kualalumpur@trade.gov