To improve competitiveness of Malaysian ICT products globally hence gain access to international market, CSM is offering MyCC evaluation and certification scheme to ICT product developers both local and international. This Scheme is a systematic process for evaluating and certifying security functionality of ICT products based on defined criteria or standards. This scheme ensures high standards of competence and impartiality as it is based on the international standards of ISO/IEC 15408 which is known as Common Criteria (CC).
BCMS Certification Scheme is based on the ISO 22301 international standard for organization that envisions for resiliency in their business operations. BCMS certification helps organisations to plan an effective business continuity management to protect against, reduce the likelihood of, and ensure business recovers from disruptive incidents.
Service offered by CSM to give assurance to businesses on website security and privacy protection by conducting compliance checking on Content and Multimedia Act based on Content Code.
The ISMS Certification scheme will help organizations in ensuring the confidentiality, integrity and availability of its information that shall result in achieving business efficiency and minimized business loss. The ISMS certification scheme is based on the ISO/IEC 27001 international standard that focuses on the aspect of information security.
The Penetration Tester Service Provider (PTSP) scheme focuses on the development and competitiveness of local companies and penetration testing consultants. As the increasing demands for professionalism in the cyber security job market specifically penetration testing, this scheme provides assurance to organization in engaging a well trained and top quality ethical hacker. The PTSP also act as a platform to foster cooperation and industry collaborations among players.
CyberSecurity Malaysia Randomness Test Tool (CRTT) is a product based on NIST Statistical Test Suite package. CRTT is a cryptographic tool to evaluate randomness of binary sequences produced by either hardware or software based random or pseudorandom number generators. Specifically developed to cater the needs of cryptographic product developers, testers and evaluators.
The MyCEL Lab is the only lab in Malaysia that has been awarded with National Voluntary Laboratory Accreditation Program (NVLAP) accreditation for cryptographic and security testing. MyCEL is able to perform testing of cryptographic modules and cryptographic algorithm implementations against the security requirements set forth in FIPS 140-2. Local Products certified according to FIPS 140-2 will have higher market value and meet the procurement requirements set by some external government agencies.
The TSA stands for Technology Security Assurance aims to test the security functions of developed technologies or digital products. The process of evaluation is shorter than MyCC certification and the cost is cheaper. Targeting developers whose intention is to market their product locally.
IPSA aims to assess the security function of locally built ICT products. It is relatively quicker and more cost-efficient assessment compared to MyCC Scheme.
The Cloud Security Compliance Audit is specifically built for Cloud service providers and developers in ensuring the compliance of security function of their platform being offered.
We use cookies and other tracking technologies to improve your browsing experience on our website, to show you personalized content and targeted ads, to analyze our website traffic, and to understand where our visitors are coming from. By browsing our website, you consent to our use of cookies and other tracking technologies.