Cybersecurity frameworks and policies form the backbone of a resilient digital environment—but without effective implementation, they remain theoretical. This session delves into how organisations can bridge the gap between compliance and real-world defenses. It also examines why these gaps persist, highlighting broader organisational and operational challenges. Drawing from supervisory assessment findings and local case insights, the session offers practical strategies to operationalise security controls and better align with national cybersecurity priorities. Attendees will leave with a clearer understanding of how to transform frameworks into meaningful, measurable actions.
- Identify and evaluate risks associated with generative AI
- Develop and implement effective risk management strategies
- Navigate regulatory and legal frameworks for AI governance
This presentation will explore Malaysia's evolving cybersecurity landscape, focusing on key legislative developments such as the Cyber Security Act 2024, which introduces comprehensive regulations for National Critical Information Infrastructure (NCII) and cybersecurity service providers. The discussion will also touch on other relevant laws and initiatives, such as the Communications and Multimedia Act (Amendment) Bill 2024 and emerging trends in data privacy and cybersecurity governance.