Industrial cyber needs to evolve
Security experts argued that as Malaysia digitizes its grid and industrial systems, traditional perimeter defenses won’t cut it — utilities must adopt adaptive, multi‑layered cyber strategies that account for climate and physical risks argued. The piece flagged IEC 62443 and cyber‑physical threat modeling as emerging priorities.
TNB reports tnb.com.my that its smart‑grid cyber protocol suite incorporates NIST authentication and DLMS data standards, and TNB’s automated monitoring pages list DSO2.0‑style real‑time control projects for distribution networks. tnb.com.my PETRONAS led Malaysian working groups to review ISA/IEC 62443 parts and the company mandated ISA/IEC 62443 training for OT teams as part of its engineering technical standards. automation.com Third‑party IEC 62443 services have scaled in Malaysia, with TÜV SÜD offering certification for 62443‑4‑1 supplier processes tuvsud.com and local consultancies advertising IEC 62443 gap analyses for OT environments. cyberintelsys.com Climate‑driven physical risk has already hit the grid: 333 substations were closed during the December 2021 floods, affecting 17,251 users, and ISEAS estimated RM6.1 billion in losses from the event, underscoring combined cyber‑physical exposure. nst.com.my Academic and industry research shows cyber‑physical threat‑modelling methods (Cyber‑HAZOP, STRIDE, attack trees) being adapted for power systems to link cyber intrusions to physical outages, and recent reviews argue these approaches should be aligned with IEC 62443 risk processes. jaatun.no Malaysia’s semiconductor and IoT footprint is expanding—Infineon’s Kulim SiC fab expansion (Phase‑2 investment ~RM30.1 billion) raises the stakes for industrial security across supply chains—while vendors like Bosch ship IEC‑62443‑aligned automation stacks such as ctrlX OS. nst.com.my
