The Maldives is on track to launch a National Cyber Security Operation Centre before the end of this year, according to Dr Ahmed Naufal Abdul Hadee, the Chief Executive Officer of the National Cyber Security Agency (NCSA). The Cyber Security Operation Centre is being established under efforts to bolster the digital defences of the country.
These initiatives, spearheaded by the NCSA, are part of a broader effort to safeguard the cyber interests of the state and its people. The establishment of the NCSA in March of last year under a decree by President Dr Mohamed Muizzu, operating under the Ministry of Interior, has been a significant step in redefining the nation's approach to cyber security.
The NCSA's role extends across a wide spectrum, encompassing the vigilant oversight of all cyber security matters affecting the country. Acting as the central coordinating body, the agency is tasked with formulating cyber security policies and standards, providing support to state institutions in fortifying their cyber defence capabilities, and spearheading national efforts to secure essential cyber security resources.
Progress has already been notable since the agency's inception, as highlighted by NCSA Chief Hadee. During an interview on PSM News' 'Raajje Miadhu' programme, Hadee pointed to a critical vulnerability within the Maldivian public sector: the insufficient state of cyber security, attributed to the absence of a unified legal framework enforcing consistent standards across institutions.
In response to these challenges, the NCSA, in collaboration with international technical organisations, has worked on drafting a comprehensive cyber security law. This legislation, described by Hadee as crucial, has been submitted to the Attorney General's Office. It introduces measures to mandate public sector entities to share information on cyber threats with the NCSA.
Hadee elaborated further on the framework proposed by the law, which will compel public sector organisations to comply with specific, standardised security measures. The legislation , he said, also includes requirements for routine cyber security audits and penetration testing for critical infrastructure, practices currently limited to a handful of entities. "Upon receiving legal authority, monitoring the public sector will become mandatory, necessitating the provision of feeds to the NCSA," Hadee stated.
A key element of the NCSA's strategic approach is the imminent launch of the National Cyber Security Operation Centre, projected to be operational by the year's end. This centre, Hadee elaborated, is designed to integrate real-time threat intelligence feeds from global technology corporations such as Microsoft and Google.
"The integration of external threat intelligence will provide an unprecedented level of visibility into the evolving cyber threat landscape," Hadee explained. "This enhanced awareness will enable proactive monitoring of public sector entities' systems, facilitating early detection and swift response to potential cyber attacks," he added. Hadee estimated that the operation centre could address up to 80 per cent of cyber security incidents.
The Cyber Security Operation Centre will play a central role in coordinating responses to cyber attacks while managing intelligence from domestic and international sources. The government's focus on strengthening the nation's cyber security infrastructure reflects its commitment to addressing cyber threats. Recent legal amendments to classify cyber offences as criminal acts further demonstrate this dedication, marking a decisive stand against malicious activities in the digital realm.