Malaysia: Adopted Cyber Security Act 2024 including cybersecurity governance framework

On 27 March 2024, the Malaysian Parliament adopted the Cyber Security Act 2024. The Act outlines specific aspects and responsibilities related to cyber security in Malaysia and establishes the National Cyber Security Committee. The committee will be responsible for formulating policies and strategies and overseeing their implementation to protect against cyber threats. The National Cyber Security Agency's (NACSA) Chief Executive is responsible for advising on, coordinating, and supervising the national cyber security strategy. This includes establishing a centralised cyber control system, appointing cyber security experts, and issuing directives to enforce the Act's provisions. The Act establishes the basis for assigning sectors as critical, regulating cyber security service providers, and addressing cyber security incidents. The enforcement provisions grant designated public officers the authority to investigate, conduct searches, and seize evidence related to cyber security breaches or violations of the Act.