What is AIWiki Malaysia?

AIWiki Malaysia is a free, open AI knowledge base covering artificial intelligence concepts, tools, models, and use cases — written specifically for Malaysian professionals and students. It is maintained by AITG Sdn Bhd, an AI company based in Penang.

Who maintains AIWiki Malaysia?

AIWiki Malaysia is maintained by AITG Sdn Bhd (Registration: 202601016521 (1678618-W)), an AI company headquartered in George Town, Penang, Malaysia. The editorial team continuously updates and expands the knowledge base.

What topics does AIWiki Malaysia cover?

AIWiki Malaysia covers a wide range of AI topics including large language models (LLMs), AI agents, machine learning fundamentals, prompt engineering, AI automation, generative AI tools, Malaysian AI regulations, local vendor landscape, and real-world AI use cases relevant to the Malaysian market.

How do I search for AI topics on AIWiki Malaysia?

You can use the search bar at the top of the site to find articles by keyword or topic. Articles are also organised by category, so you can browse by subject area such as Models, Tools, Concepts, or Use Cases.

Is AIWiki Malaysia available in Bahasa Malaysia?

Yes. AIWiki Malaysia publishes content in both English and Bahasa Malaysia to serve the full breadth of the Malaysian professional and student community. Language availability is indicated on each article page.

How can I submit a topic or suggest an article?

You can suggest topics or submit article ideas by contacting the AIWiki Malaysia team at admin@aiteragrid.com. AITG Sdn Bhd reviews all submissions and publishes content that meets editorial accuracy standards.

National Cyber Security Agency (NACSA)

The Malaysian federal agency responsible for coordinating national-level cyber security policy, protecting Critical National Information Infrastructure, and shaping the country's response to emerging threats including artificial intelligence and AI-enabled attacks.

5 min readLast updated May 2026Malaysian Context

The National Cyber Security Agency, known by its acronym NACSA, is the Malaysian federal agency designated as the national lead body for cyber security matters. Established in February 2017 and originally placed under the National Security Council, NACSA was later realigned under the Ministry of Digital. Its mandate covers the coordination of cyber security policy, the protection of Critical National Information Infrastructure (CNII), cyber crisis management, and the development of national capability. The agency has emerged as the principal Malaysian government actor on the cyber-security implications of artificial intelligence.

Mandate and structure

NACSA is responsible for developing and implementing national-level cyber security policies and strategies, protecting CNII, undertaking strategic measures to counter cyber threats, leading cyber security awareness and capacity-building programmes, formulating the strategic approach to cyber crime, advising agencies on cyber risk management, optimising shared resources across the public sector, and fostering regional and global cyber security partnerships.

The agency operates from Cyberjaya and works closely with related bodies including CyberSecurity Malaysia (the operational arm under the same ministry), the Malaysian Communications and Multimedia Commission (MCMC), the Royal Malaysia Police's commercial crime investigation department, and Bank Negara Malaysia for the financial sector. NACSA also represents Malaysia in ASEAN cyber forums and in bilateral cyber dialogues with partners including Singapore, Japan, the United Kingdom, Australia, and the United States.

Cyber Security Act 2024

The Cyber Security Act 2024, which came into force in 2024, gave NACSA statutory powers for the first time. Prior to the Act, NACSA operated under administrative authority. The Act establishes a formal regime for the designation of National Critical Information Infrastructure sectors, mandates incident reporting, empowers NACSA to direct audits and risk assessments, and creates licensing obligations for managed cyber security service providers operating in Malaysia. The Act applies to eleven CNII sectors including banking and finance, transportation, energy, water, health services, government, defence and national security, emergency services, food and agriculture, trade and industry, and information and communications.

Cyber Security Strategy 2025–2030

NACSA is finalising Malaysia's next national Cyber Security Strategy, covering the period 2025 to 2030. The strategy, which succeeds the Malaysia Cyber Security Strategy 2020–2024, explicitly incorporates emerging technologies including artificial intelligence, generative AI, and the cyber-security threats they enable. Public statements from the Ministry of Digital have confirmed that the strategy will address AI-enabled phishing, deepfake fraud, autonomous offensive cyber tools, and the security of AI supply chains used by Malaysian government systems.

AI security committee

In parallel with the strategy refresh, the Ministry of Digital has announced the formation of a national AI security committee under NACSA's coordination. The committee draws members from across the public sector, academia, and industry, with the remit of assessing AI technology against national security and ethical standards. Its work is intended to complement the broader Malaysia AI Governance Framework being developed by MDEC and the Ministry of Digital, and to ensure that AI systems used on CNII meet appropriate assurance levels.

Operational programmes

NACSA runs several recurring national exercises. The X-Maya cyber drill series tests CNII operators against simulated attacks across multiple sectors. The agency also coordinates the Malaysia Cyber Defence Operations Centre (MyCDOC) and contributes to the ASEAN Computer Emergency Response Team network. National cyber security awareness campaigns under the CyberSAFE programme, run by CyberSecurity Malaysia in coordination with NACSA, are extended to schools, universities, and small and medium enterprises across the country.

Malaysian Context — NACSA, AI Risk, and the CNII Sectors

NACSA's expanding remit over AI risk affects Malaysian organisations across every CNII sector. For banks regulated by Bank Negara Malaysia, NACSA guidance now intersects with BNM's Risk Management in Technology (RMiT) policy and the e-KYC Policy Document; banks such as Maybank, CIMB, Public Bank, RHB, and Hong Leong Bank routinely benchmark their AI model risk programmes against NACSA expectations alongside BNM requirements.

In the energy and utilities sector, Tenaga Nasional Berhad, Petronas, Air Selangor, and Indah Water rely on NACSA-led threat intelligence sharing for the protection of operational technology environments where AI is increasingly used for predictive maintenance and anomaly detection. Transportation operators including Malaysia Airports, Prasarana, KTM Berhad, and the AirAsia group are also CNII designated entities subject to incident reporting obligations under the Cyber Security Act 2024.

For technology service providers based in Cyberjaya, Penang, and Iskandar Malaysia — including AI specialists such as AITG Sdn Bhd, which operates the Teragrid Ai Platform and Teragrid Agent products — NACSA's evolving licensing regime affects how managed AI services are offered to CNII customers. Service providers serving CNII operators are likely to require licences under the Cyber Security Act, and AI components of those services will be assessed under the forthcoming AI security committee framework.

For the broader Malaysian public, NACSA is the primary federal authority on AI-enabled scams, deepfake-driven impersonation fraud, and AI-related identity theft, and works with the Royal Malaysia Police, MCMC, and the National Anti-Financial Crime Centre (NFCC) on enforcement.

References

National Cyber Security Agency Malaysia. (2024). Official Mandate and Functions. nacsa.gov.my.
Parliament of Malaysia. (2024). Cyber Security Act 2024. Federal Gazette.
Ministry of Digital Malaysia. (2025). Malaysia Cyber Security Strategy 2025–2030 Public Consultation.
Bernama. (2025). NACSA Finalising Malaysia's Cybersecurity Strategy 2025–2030. Bernama News.
CyberSecurity Malaysia. (2024). Annual Report on National Cyber Incidents. CSM.

Tags:nacsa malaysia cybersecurity ai-governance regulation

Type	Federal cyber security agency
Established	February 2017
Reports to	Ministry of Digital, Malaysia
Headquarters	Cyberjaya, Selangor
Key remit	National cyber policy, CNII protection

Mandate and structure

Cyber Security Act 2024

Cyber Security Strategy 2025–2030

AI security committee

Operational programmes

See Also

References

References