Page 9 - POLISI KESELAMATAN SIBER KESUMA V1.0

Page 9 - POLISI KESELAMATAN SIBER KESUMA V1.0 - EDARAN UMUM_07032025

P. 9

BIDANG A.13: KESELAMATAN MAKLUMAT DALAM PENGURUSAN KESINAMBUNGAN
PERKHIDMATAN ............................................................................................................................. 101
A.13.1 Keselamatan Maklumat Dalam Kesinambungan Perkhidmatan .................. 101

A.13.1.1 Rancangan Keselamatan Maklumat Dalam Kesinambungan
Perkhidmatan ........................................................................................................................... 101
A.13.1.2 Pelaksanaan Keselamatan Maklumat Dalam Kesinambungan
Perkhidmatan ........................................................................................................................... 101

A.13.1.3 Mengkaji, Mengesah dan Menilai Keselamatan Maklumat Dalam ......... 104
Kesinambungan Perkhidmatan........................................................................................... 104

A.13.2 Redundancy .................................................................................................... 104
A.13.2.1 A.13.2.1 Ketersediaan Kemudahan Pemprosesan Maklumat (Availability
of Information Process Facilities) ...................................................................................... 104

BIDANG A.14: PEMATUHAN ....................................................................................................... 105
A.14.1 Pematuhan Terhadap Keperluan Perundangan dan Perjanjian Kontrak .... 105

A.14.1.1 Mengenalpasti Undang-Undang dan Perjanjian Kontrak ......................... 105

A.14.1.2 Hak Harta Intelek (Intellectual Property Rights-IPR) ................................. 106
A.14.1.3 Perlindungan Rekod .......................................................................................... 107

A.14.1.4 Privasi dan perlindungan maklumat peribadi ............................................. 107
A.14.1.5 Kawalan Kriptografi .......................................................................................... 107
A.14.2 Kajian Keselamatan Maklumat ....................................................................... 108

A.14.2.1 Kajian Bebas/Pihak Ketiga Terhadap Keselamatan Maklumat ............... 108

A.14.2.2 Pematuhan Polisi dan Standard/Piawaian ................................................... 108
A.14.2.3 Pematuhan Kajian Teknikal ............................................................................. 109

A.14.3 Inspektorat JPICT ........................................................................................... 109

A.14.3.1 Keperluan .............................................................................................................. 109
A.14.3.2 Objektif .................................................................................................................. 109

A.14.3.3 Skop ....................................................................................................................... 110
Lampiran 1 .......................................................................................................................................... 115

Lampiran 2 .......................................................................................................................................... 116
Lampiran 3 .......................................................................................................................................... 119
Lampiran 4 .......................................................................................................................................... 120

9 | 1 1 9

4 5 6 7 8 9 10 11 12 13 14