Beyond Compliance: Building Stronger Cyber Resilience for Malaysia’s Telecom Sector

Estimate Reading Time: 2 minutes

KUALA LUMPUR, 5 July 2026 (The Capital Post) – As cyber threats continue to grow in scale and sophistication, Malaysia’s telecommunications sector must shift its focus beyond regulatory compliance and towards building genuine cyber resilience to safeguard critical digital infrastructure.

A major cyber incident involving a leading telecommunications operator in Asia in 2025 highlighted the severe operational, financial and reputational consequences that can result from a large-scale data breach. While the incident occurred outside Malaysia, it offers valuable lessons for local telecommunications operators and critical infrastructure providers as digital ecosystems become increasingly interconnected.

Industry experts note that cyber resilience is no longer measured by whether an organisation experiences an attack, but by how effectively it can detect, contain and recover from one. As cybercriminals increasingly leverage artificial intelligence (AI) to automate reconnaissance, enhance phishing campaigns, conduct sophisticated social engineering attacks and identify system vulnerabilities, organisations face an increasingly complex threat landscape.

For telecommunications providers, cybersecurity extends beyond protecting customer information. Maintaining uninterrupted services, ensuring operational continuity and preserving public confidence are equally critical, given the sector’s central role in supporting economic activity, government services and national connectivity.

To strengthen resilience, organisations are encouraged to prioritise stronger privileged access controls, network segmentation, encryption of sensitive data, continuous monitoring of critical systems and rapid remediation of identified vulnerabilities. However, technical measures alone are insufficient without robust governance and regular validation of security capabilities.

-Advertisement-

Industry best practices also emphasise the importance of regularly conducting tabletop exercises, red team assessments and breach simulations to evaluate incident response readiness under realistic scenarios. Continuous monitoring, centralised logging, threat intelligence integration and clearly defined response procedures are equally essential to reducing detection and recovery times.

Experts caution that compliance should not be mistaken for resilience. While organisations may satisfy regulatory and audit requirements, they may still struggle to respond effectively during a sophisticated cyberattack. True cyber resilience is demonstrated through an organisation’s ability to maintain operations and recover quickly during an actual crisis.

Strengthening cybersecurity also requires close collaboration across the broader ecosystem. Telecommunications operators, regulators, technology providers and industry stakeholders must work together through threat intelligence sharing, common security standards, supply chain assurance and sector-wide exercises to enhance collective resilience.

As Malaysia continues its digital transformation, building resilient telecommunications infrastructure will require sustained investment, leadership commitment and continuous improvement to ensure the country’s critical communications networks remain secure against evolving cyber threats. – The Capital Post.