Summary

This Supplement highlights and shares the implementation of a code of practice for information and network security management by the Malaysian information and communication industry, based on Recommendation ITU-T X.1051. The sets of requirements have been identified and documented in the "Requirements for Information and Network Security (INS)" developed by MTSFB (Malaysian Technical Standards Forum Bhd) and approved by MCMC (Malaysian Communications and Multimedia Commission) on 5 October 2016. The requirements are based on Recommendation ITU‑T X.1051 for establishing, implementing, maintaining and continually improving information and network security management within the context of an organization. The code of practice for information security controls based on Recommendation ITU-T X.1051 for Malaysian telecommunication organizations provides four (4) families of control focusing on organization, infrastructure, people and environment.