ISO/IEC 17025 2017 הקידב תודבעמ ISO/IEC 17020: 2012, Type ...
Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and...
Transcript of Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and...
![Page 1: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/1.jpg)
Experience In Achieving MS ISO/IEC
17025 Accreditation Under
Laboratory Accreditation Scheme
Of Malaysia (SAMM)
Copyright © 2010 CyberSecurity Malaysia
Of Malaysia (SAMM)
Noraini Abdul Rahman
CyberSecurity Malaysia MySEF,
Department of Security Assurance
22 July 2010
![Page 2: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/2.jpg)
Copyright © 2010 CyberSecurity Malaysia 2
![Page 3: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/3.jpg)
� Background of Quality Management System
�Objectives
� Scope
� Approach & methodology
�Preparation Phase�Preparation Phase
� Development Phase
� Accreditation Phase
�Internal Audit
�Adequacy Audit
�Pre-Assessment Audit
�Compliance Audit
� Challenges
�Success Factors
Copyright © 2010 CyberSecurity Malaysia3
![Page 4: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/4.jpg)
BACKGROUND OF QUALITY
MANAGEMENT SYSTEM
Experience In Achieving MS ISO17025 Accreditation Under Laboratory
Accreditation Of Malaysian Scheme (SAMM)
Copyright © 2010 CyberSecurity Malaysia 4
![Page 5: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/5.jpg)
Chief Operating Officer
Head of Services Quality Management System Division
Head of Security Assurance
Department
E
S
C
A
L
A
CyberSecurity Malaysia MySEF Organisation Chart
Department
Lab Manager
Senior Evaluator
Evaluator
Quality Manager
Copyright © 2010 CyberSecurity Malaysia 5
A
T
I
O
N
CyberSecurity
Malaysia
MySEF
![Page 6: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/6.jpg)
Policy Statement
• CyberSecurity Malaysia MySEF management shall be committed to providing
clients with the highest levels of service in compliance with the requirements
of the Malaysian Common Criteria Evaluation and Certification (MyCC)
Scheme, MS ISO/IEC 17025 and all laws and regulations governing the
Security Assurance department.
The Quality Manager shall be responsible for ensuring that the quality• The Quality Manager shall be responsible for ensuring that the quality
management system defined within this manual is implemented and followed
at all times.
6Copyright © 2010 CyberSecurity Malaysia
![Page 7: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/7.jpg)
Policy Statement
• All CyberSecurity Malaysia MySEF personnel shall adhere to the quality
policies and procedures defined in the manual and the CyberSecurity
Malaysia MySEF Management System Procedures Manual Part 1 and
CyberSecurity Malaysia MySEF Management System Procedures Manual Part
2 .
• The CyberSecurity Malaysia MySEF quality management system shall be
accredited by Standards Malaysia against the requirements of MS ISO/IEC
17025 .
7Copyright © 2010 CyberSecurity Malaysia
![Page 8: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/8.jpg)
Quality Objectives
• Customer Satisfaction. To deliver evaluation services that meet
agreed customer requirements, timescales and expectations of value
and service.
• Effectiveness. To ensure the effective application of ICT security
evaluation methodology.
• Efficiency. To continually improve CyberSecurity Malaysia MySEF
processes to deliver services more efficiently.processes to deliver services more efficiently.
• Impartiality. To deliver services in an impartial an unhindered
manner.
• Objectivity. To obtain evaluation results with a minimum of subjective
judgment or opinion.
• Repeatability and Reproducibility. To retain sufficient and accurate
records to enable evaluations to be repeated and results to be
reproduced.
8Copyright © 2010 CyberSecurity Malaysia
![Page 9: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/9.jpg)
9Copyright © 2010 CyberSecurity Malaysia
![Page 10: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/10.jpg)
OBJECTIVES
Experience In Achieving MS ISO 17025 Accreditation Under
Laboratory Accreditation Scheme Of Malaysia (SAMM)
Copyright © 2010 CyberSecurity Malaysia 10
![Page 11: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/11.jpg)
Objectives
• Fulfill MyCC Requirement
• Enhance Quality Management System
• Increase Staff Competency
• Branding and Image Building• Branding and Image Building
• Gain Customer’s Confidence
• Market Value
Copyright © 2010 CyberSecurity Malaysia 11
![Page 12: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/12.jpg)
SCOPE
Experience In Achieving MS ISO 17025 Accreditation Under
Laboratory Accreditation Scheme Of Malaysia (SAMM)
Copyright © 2010 CyberSecurity Malaysia 12
![Page 13: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/13.jpg)
SCOPE OF ACCREDITATION
Materials/
Products
Tested
Type of test/
Properties measured/
Range of measurement
Standard Test
Methods/
Equipment/Techniques
'Protection Profile, and ICT
products and systems which
include Firmware and Software
such as low
level drivers, operating
Information Security
Evaluation of IT security
under the MyCC Scheme in
accordance with Information
Technology Security
ISO/IEC 18045 Information
Technology – Security techniques:
Methodology for IT Security
- Security Evaluation of Protection
Profile (PP)level drivers, operating
systems and applications.
Technology Security
Evaluation Criteria ISO/IEC
15408 , “Information
technology – Security
techniques – Evaluation
criteria for IT”.
Profile (PP)
- Security Evaluation of ICT
Products and Systems for
- Evaluation of Assurance Level 1
(EAL1)
- Evaluation of Assurance Level 2
(EAL2)
- Evaluation of Assurance Level 3
(EAL3)
- Evaluation of Assurance Level 4
(EAL4)
Copyright © 2010 CyberSecurity Malaysia 13
![Page 14: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/14.jpg)
APPROACH & METHODOLOGY
- PREPARATION PHASE
Experience In Achieving MS ISO 17025 Accreditation Under
Laboratory Accreditation Scheme Of Malaysia (SAMM)
Copyright © 2010 CyberSecurity Malaysia 14
![Page 15: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/15.jpg)
Preparation Phase
• Identify key personnel – Lab manager,
Quality Manager, Senior Evaluator,
Evaluators, Authorised Signatories
• Identify requirements – MyCC Scheme, • Identify requirements – MyCC Scheme,
SAMM (MS ISO 17025)
• Identify competency – Evaluators,
Authorised Signatory
Copyright © 2010 CyberSecurity Malaysia 15
![Page 16: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/16.jpg)
APPROACH & METHODOLOGY
- DEVELOPMENT PHASE
Experience In Achieving MS ISO 17025 Accreditation Under
Laboratory Accreditation Scheme Of Malaysia (SAMM)
Copyright © 2010 CyberSecurity Malaysia 16
![Page 17: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/17.jpg)
Development Phase
• MySEF Organisation Chart
• Quality Management System
• MySEF Management Committee
(MySEF_MC)(MySEF_MC)
• Internal Auditors
• Audit Plan and Schedule
• Risk Treatment Plan
• Root Cause Analysis
Copyright © 2010 CyberSecurity Malaysia 17
![Page 18: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/18.jpg)
APPROACH & METHODOLOGY
- ACCREDITATION PHASE
Experience In Achieving MS ISO 17025 Accreditation Under
Laboratory Accreditation Scheme Of Malaysia (SAMM)
Copyright © 2010 CyberSecurity Malaysia 18
![Page 19: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/19.jpg)
• MS ISO 17025:2005
General Requirements
For The Competence Of
Testing And Calibration
Laboratories
• SPECIFIC TECHNICAL
REQUIREMENTS 1.10
(STR 1.10) - Specific (STR 1.10) - Specific
Technical Requirements
For Accreditation Of
Information Technology
Security Evaluation And
Testing: Common
Criteria
Copyright © 2010 CyberSecurity Malaysia 19
![Page 20: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/20.jpg)
Copyright © 2010 CyberSecurity Malaysia 20
![Page 21: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/21.jpg)
Internal Audit
• Internal Audit was performed on 14 till 21 April
2009.
– The auditors team:
• Lab Manager (Team Leader)
• Head of Internal Audit Department• Head of Internal Audit Department
• Head of MyCB
• Senior Evaluator
• Evaluator
• Certifier
– Received 24 NCRs.
– Closing: Audit report
21Copyright © 2010 CyberSecurity Malaysia
![Page 22: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/22.jpg)
Improvements
• Job Descriptions
• Deputizing arrangement
• Appointment Letters
• Document Control • Document Control
• Impartiality amongst evaluator teams
• Customer Complaint Procedure
• Induction program
• Training Plan
• Physical and Electronics Storage
Copyright © 2010 CyberSecurity Malaysia 22
![Page 23: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/23.jpg)
Copyright © 2010 CyberSecurity Malaysia 23
![Page 24: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/24.jpg)
Adequacy Audit
• Conducted on 8 August 2010
• Documentation Review
– Quality Manual
– Procedure Manuals– Procedure Manuals
Copyright © 2010 CyberSecurity Malaysia 24
![Page 25: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/25.jpg)
Improvements
• Mapping Quality Manual with ISO clauses
Copyright © 2010 CyberSecurity Malaysia 25
![Page 26: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/26.jpg)
26Copyright © 2010 CyberSecurity Malaysia
![Page 27: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/27.jpg)
Copyright © 2010 CyberSecurity Malaysia 27
![Page 28: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/28.jpg)
PRE-ASSESSMENT AUDIT
• Conducted on 4 November 2009
• Received 10 Minor NCRs
– 6 Management Requirements
– 4 Technical Requirements– 4 Technical Requirements
– Closed after 2 weeks
Copyright © 2010 CyberSecurity Malaysia 28
![Page 29: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/29.jpg)
A Laboratory must be able to demonstrate:
� Competence to perform specific tests measurements or calibration
Sound laboratory management
� Suitable qualified and trained staff
� Proper equipment management and adherence to calibration and
maintenance program.
� Accurate and complete record keeping� Accurate and complete record keeping
� Adequate quality control and quality assurance procedures.
� Adherence to internal audit program.
� Appropriate facilities for the handling, storage and testing of samples.
� Assurance on essential consumables and outside support services.
� Not just an interest, but a commitment to doing things right.
Ref: http://www.standardsmalaysia.gov.my
Copyright © 2010 CyberSecurity Malaysia 29
![Page 30: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/30.jpg)
Improvements
• Develop policy and procedure on the usage of
SAMM accreditation symbol
• Improve Review of Request – basic tools is “
MyCC Scheme, CC and CEM”
• Proficiency Test –Voluntary Periodic Assessment
(VPA), TRM (oversight by certifiers) and MyCC
Participation on CC governance and development
• Maintenance details and audit log for lab
equipments
Copyright © 2010 CyberSecurity Malaysia 30
![Page 31: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/31.jpg)
Copyright © 2010 CyberSecurity Malaysia 31
![Page 32: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/32.jpg)
Compliance Audit
• Conducted on 4 December 2009
• Received 8 Minor NCRs
– 6 Management Requirements
– 2 Technical Requirements– 2 Technical Requirements
– Closed after 4 weeks
Copyright © 2010 CyberSecurity Malaysia 32
![Page 33: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/33.jpg)
Improvements
• Declaration form of understanding Quality
Manual and Quality Management System –
mutual understanding
• Procedure on Induction Program – consistent
practicepractice
• Procedure on review of project request –obtain
the right product
• Procedure on Measuring Customer Satisfaction –
analysis of customer feedback form
Copyright © 2010 CyberSecurity Malaysia 33
![Page 34: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/34.jpg)
Final Process to be accredited
Accreditation awarded for 3 years
Copyright © 2010 CyberSecurity Malaysia 34
Assessment Report deliberated by Lab Accreditation Evaluation
Panel (LAEP)
LAEP’s recommendation for accreditation to the Director General
![Page 35: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/35.jpg)
Copyright © 2010 CyberSecurity Malaysia 35
![Page 36: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/36.jpg)
CHALLENGES
Experience In Achieving MS ISO 17025 Accreditation Under
Laboratory Accreditation Scheme Of Malaysia (SAMM)
Copyright © 2010 CyberSecurity Malaysia 36
![Page 37: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/37.jpg)
Challenges
• SAMM needs to develop STR1.10 to cater
CC and MyCC Requirements– delay the
application
• No technical assessor available till Nov • No technical assessor available till Nov
2009.
• Lab renovation to cater management
direction.
• SAMM does not conduct any audit in the
month of DecemberCopyright © 2010 CyberSecurity Malaysia 37
![Page 38: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/38.jpg)
SUCCESS FACTORS
Experience in achieving MS ISO 17025 accreditation under Laboratory
Accreditation of Malaysian Scheme (SAMM)
Copyright © 2010 CyberSecurity Malaysia 38
![Page 39: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/39.jpg)
Success Factors
• Top management support – CEO, COO
• Interdepartmental involvement – APS, IAD,
LESEC, FIN,PNLD, SITSED and MyCB
• Team works – MySEF and Security • Team works – MySEF and Security
Assurance Department
Copyright © 2010 CyberSecurity Malaysia 39
![Page 40: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/40.jpg)
40Copyright © 2010 CyberSecurity Malaysia
![Page 41: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/41.jpg)
Copyright © 2010 CyberSecurity Malaysia 41
By Scotts Adam (www.dilbert.com), 2010
![Page 42: Experience In Achieving MS ISO/IEC 17025 Accreditation ...Scheme, MS ISO/IEC 17025 and all laws and regulations governing the SecurityAssurancedepartment. • The Quality Manager shall](https://reader030.fdocuments.in/reader030/viewer/2022040908/5e7f7255f3fe9d124a7db116/html5/thumbnails/42.jpg)
Corporate Office:
CyberSecurity Malaysia,
Level 8, Block A,
Mines Waterfront Business Park,
No 3 Jalan Tasik, The Mines Resort City,
43300 Seri Kembangan,43300 Seri Kembangan,
Selangor Darul Ehsan, Malaysia.
T +603 8946 0999
F +603 8946 0888
www.cybersecurity.my
Copyright © 2010 CyberSecurity Malaysia 42