Information Security Awareness
The need to adopt the correct attitude towards security
Modern societies in industrialized and developing nations share the common advantage, and ailment of new technology. The advent of online electronic transactions and activities has given birth to a world connected by an information network that is both beneficial as well as detrimental. With such interconnectivity comes vulnerability and the danger of threats to the network from criminals, terrorists, and hostile foreign nation-states. These threats might seek to steal money or proprietary data, invade private records, conduct industrial espionage, cause a vital infrastructure to cease operations, or engage in information warfare . Numerous institutions representing the Critical National Infrastructure (CNI), such as the banking industry, the transport industry, the power industry, require a system of security, which assures that transactions and activities conducted online, are protected, or at the very least, constantly notified of impending attacks.
Information security is all about dealing with such threats, be it on a small scale, such as protection against spammers and denial of service attacks to large scale global worms and viruses releases as well as any form of cyber terrorism.
Apart from security software available on retail for information network systems, there are Governmental bodies on a national level from around the world that have been set up with the sole purpose of ensuring that the CNIs are protected and in ready anticipation of electronic attacks.
These centers, or, to use the buzzword: "Infosec Centres", are manned to anticipate, identify and possibly find ways to disable such threats from anywhere in the world. Not only do they prepare for the worse, they also inform the stakeholder of the CNIs of cyber security threats.
At present, Malaysia's CERT activities are implemented by NISER, an organization which evolved from what was originally the Malaysian Computer Emergency Response Team (MyCERT) in March 1997. NISER was formed by the National Information and Communication Technology Council (NITC) to address ICT security issues covering both proactive and reactive measures. NISER specialises and provides expert opinion on subject matters.
The Malaysian Communications and Multimedia Commission plays a role in implementing information network security. It is empowering it to "ensure information security and network reliability and security."
The Malaysian Communications and Multimedia Commission conducts grass root level awareness programmes to promote understanding and implementation of sound security measures for users and service providers of communications and multimedia services. A holistic approach is the best as technology can only go so far towards information security, and adopting the correct attitude cements it further.