Home > Frequently Ask Question

In some parts of Malaysia up to 90 per cent of critical infrastructure is privately owned or operated on a commercial basis.

CNII brings together a significant number of existing strategies, plans and procedures that deal with the prevention, preparedness, response and recovery arrangements for disasters and emergencies.  It is not a new discipline, but is a coordinated blending of existing specialisations, including:

  • law enforcement and crime prevention
  • counter terrorism
  • national security and defence
  • emergency management, including the dissemination of information
  • business continuity planning
  • protective security (physical, personnel and procedural)
  • e-security
  • natural disaster planning and preparedness
  • risk management
  • professional networking, and
  • market regulation, planning and infrastructure development.

CNII requires the active participation of the owners and operators of infrastructure, regulators, professional bodies and industry associations, in cooperation with all levels of government, and the public.  To ensure this cooperation and coordination, all of these participants should commit to the following set of common fundamental principles of CNII.  These principles are to be read as a whole, as each sets the context for the following.

  • CNII is centred on the need to minimise risks to public health, safety and confidence, ensure our economic security, maintain Malaysia’s international competitiveness and ensure the continuity of government and its services.

  • The objectives of CNII are to identify critical infrastructure, analyse vulnerability and interdependence, and protect from, and prepare for, all hazards.

  • As not all critical infrastructure can be protected from all threats, appropriate risk management techniques should be used to determine relative severity and duration, the level of protective security, set priorities for the allocation of resources and the application of the best mitigation strategies for business continuity.

  • The responsibility for managing risk within physical facilities, supply chains, information technologies and communication networks primarily rests with the owners and operators.

  • CNII needs to be undertaken from an 'all hazards approach' with full consideration of interdependencies between businesses, sectors, jurisdictions and government agencies.

  • CNII requires a consistent, cooperative partnership between the owners and operators of critical infrastructure and governments.

  • The sharing of information relating to threats and vulnerabilities will assist governments, and owners and operators of critical infrastructure to better manage risk.

  • Care should be taken when referring to national security threats to critical infrastructure, including terrorism, so as to avoid undue concern in the Malaysian domestic community, as well as potential tourists and investors overseas.

  • Stronger research and analysis capabilities can ensure that risk mitigation strategies are tailored to Malaysia’s unique critical infrastructure circumstances.
Contact Us | FAQ | Site Map | Disclaimer | Copyright © - CyberSecurity Malaysia