Dated: 11-11-2024
Ch01 what is the Status of Information Security of Pakistan
- Pakistan Electronic Crimes Act (PECA) enacted as late as 2016
- Cyber security strategy, eco-system still missing
- Research program, capacity building, standardization, & certification bodies absent
- Condition of InfoSec in industry largely dismal
Global Cyber Security Index 2017 (ITU)
- Pakistan ranked 67th with a score of 0.44/1
- Bangladesh ranked 53rd with a score of 0.524/1
- India ranked 23rd with a score of 0.683/1
| Pakistan | |
|---|---|
| Cybercriminal legislation | |
| Cybersecurity legislation | |
| Cybersecurity training | |
| LEGAL MEASURES | |
| National CERT/CIRT/CSIRT | |
| Government CERT/CIRT/CSIRT | |
| Sectoral CERT/CIRT/CSIRT | |
| Standards for organizations | |
| Standards for professionals | |
| Child online protection | |
| TECHNICAL MEASURES | |
| Strategy | |
| Responsible agency | |
| Cybersecurity metrics | |
| ORGANIZATIONAL MEASURES | |
| Standardization bodies | |
| Cyberseucrity good practices | |
| R&D programmes | |
| Public awareness campaigns | |
| Professional training courses | |
| Education programmes | |
| Incentive mechanisms | |
| Home-grown industry | |
| CAPACITY BUILDING | |
| Bilateral agreements | |
| Multilateral agreements | |
| International participation | |
| Public-private partnerships | |
| Interagency partnerships | |
| COOPERATION | |
| GCI |
Pakistan Cyber Security Posture (industry)
- Superficial security
- Reactive
- Emphasis on governance
- Security hardening of IT assets largely absent
- Industry has been in denial for last decade
Reasons for Poor Security Posture
- Archaic digitalization and commerce
- Perception that Pakistan is immune
- Lack of awareness and management commitment
- Lack of effective regulations
Changing Dynamics
- Pakistan financial industry rocked by Bangladesh SWIFT hack 2016
- Wanna cry (May 2017) badly hit several dozen organizations in Pakistan
- Increasing e-commerce, electronic banking
Pakistan Needs
- Necessary measures by the Government in line with what Malaysia, Oman have done for cyber security
- Development of the security eco-system as an enabler in order to drive strong security posture
Post Assessments
According to Global Cyber Security Index 2017 (ITIJ), Bangladesh ranked
- 53
- 61
- 67
- 69
According to Global Cyber Security Index 2017 (ITIJ), Pakistan ranked
- 65
- 67
- 69
- 61
In terms of Information Security in Pakistan, PECA stands for
- Pakistan Electronic Crime Act
- Pakistan Electrical Code Ac
- Pakistan Electronic Code Act
- Pakistan Electronic Core Act