Page 124 - SPA 2022_ENG
P. 124
INFORMATION SECURITY REINFORCEMENT
The Information Management Division, acting as the facilitator for the
utilisation and implementation of digital technology in the PSC, took
several measures to reinforce information security throughout 2022.
(i) MS ISO/IEC 27001: 2013 Information Security Management
System (ISMS) Certification
ISMS certification is one of the measures introduced by the
Government to ensure the security of the Public Sector ICT
infrastructure, especially those involving guaranteed service
deliveries. In 2022, the ISMS Surveillance Audit was conducted
together with CyberSecurity Malaysia by maintaining the
existing scope as follows:
(a) The process of appointment and service of public officers
involves the operation and maintenance of information for:
» Continuous Recruitment System (eSMSM)
» Service Matters, Promotion and Discipline Monitoring
System (eSPDM)
» PSC Official Portal
(b) These matters include the following:
» Database
» Backup and restore
» Preventive maintenance
» Corrective maintenance
» Installation of patches
» Management of user accounts
» Management of change requests
» Updating of portal contents
» Online review updates
123
