Cyber Security Bill 2024 passed in Parliament: Allen & Gledhill

29 April 2024

On 3 April 2024, the Cyber Security Bill 2024 (“Bill”) was passed by the the Senate (Dewan Negara). This Bill aims to enhance national cyber security by requiring compliance of certain measures, standards, and processes in the management of cyber security threats and cyber security incidents to national critical information infrastructures.

Some of the key provisions introduced by the Bill are as follows:

Establishment of the National Cyber Security Committee;
Duties and powers of the Chief Executive of the National Cyber Security Agency;
Appointment of national critical information infrastructure sector leads and their functions;
Designation of national critical information infrastructure entities;
Provisions on the code of practice, which shall be endorsed by the Chief Executive of the National Cyber Security Agency and contain measures, standards, and processes to ensure the cyber security of a national critical information infrastructure;
Licensing of cyber security service providers;
Provisions relating to cyber security incidents including investigating whether a cyber security incident has occurred, determining measures necessary to respond to or recover from a cyber security incident, and preventing reoccurrence of such incidents; and
Enforcement provisions.