Saturday July 02, 2022

‘Dynamic laws, policies a must to cope with cyber-attacks’

May 28, 2022

Islamabad : Over the years, Pakistan has survived numerous cyber-attacks from multiple state and non-state actors, hence dynamic policies and laws are needed to cope with the menace.

This was stated by Brigadier (r) Mohammad Yasin, the Adviser Emeritus, Sustainable Development Policy Institute while initiating discussion at the 63rd Meeting of SDPI’s Study Group on Information Technology and Telecommunication (ICT).

Pakistan has such policies and laws which obviously cannot be static, and must be evolved to keep pace with the impending cyber threats and attacks, Brigadier Yasin said.

Dr. Muhammad Mukaram Khan, Director-General, Cyber Vigilance, Pakistan Telecom Authority said it’s time to act now to secure laws/policies for implementation. Warning about the threats, including cyber incidents in Industry, he stressed the need to identify data breaches. Pakistan is among 10 most targeted countries in the world, so copyright and trademark offences need international legislative responses and countries' cooperation on cybercrime. Pakistan must ensure system security hardening, revision of PECA-2016 to PECA-2022 as well as social media roles with the help of establishing telecom operators approved by the PTA.

Prof. Dr Haider Abbas, Military College Signals, University of Science and Technology, said that Pakistan lives in an era of cybersecurity, which requires fulfilling human expectations of the cybersecurity skills gap. Mentioning the lack of women's participation in the workforce to meet challenges in Pakistan, he said, these are inadequate for the prevention of crimes. “We need human resource capacity building, the inclusion of customized programmes, the establishment of centres and labs of excellence, startups, and public-private partnerships in terms of skill development. He said that cyber security development via educational programmes needs to develop research, competitions, and by encouraging youth in cyber security competitions. He recommended partnerships of industry and academia to ensure capacity building to assess cybersecurity issues. He also emphasized undertaking academic research programmes by Higher Education Commission and funding for interdisciplinary research involving psychology and cyber security skills. He further suggested organising webinars and cross-lab training at government organizations for the implementation of laws and policies.

Dr. Abid Qaiyum Suleri, SDPI Executive Director, concluded that cyber security policy needs to take full ownership by the government for the implementation of national cyber security policies. Export potential mechanism strengthening of cyber security for the economic perspective encompasses defence. Internet of things devices need to be operated by software companies with joint partnerships with the Internet of things (IoT) arena in Pakistan, he said, adding that the data shall be strategically secured on cloud services or google drives. “New alignment for international cooperation with five eyes such as US, UK, NZ, Canada, and EU should be integrated for the strategical benefit, he maintained.

Aslam Hayat, Senior Policy Fellow, LIRNEASIA; Partner HaYat and Noorwala; Former Head of Telenor Pakistan Regulatory Wing said that Pakistan’s cyber security policy does match the current needs. Discussing the indicators in connection with the success of any policy, he said the framework, over-reaching principles, and good practices are the need of hour to focus on policies. Pakistan, which ranked 79 in the Global Cyber Security Index, needs to invest in capacity building of cyber security human resources. He stressed the need for strengthening National Cyber Security Policy through identifying the right risks and challenges, and establishing trust in the digital transactions to improve Pakistan’s ICT ranking for the implementation and follow-ups through stakeholders.

Ameena Sohail, Managing Partner Precision Consultants and former Member (Legal) at the Ministry of Information Technology, sought the way forward by highlighting the measurements of the state’s commitment to the UN International Telecommunication Union (ITU) to cyber security which involves legal, technical, organizational, capacity building and internal cooperation. To secure crimes such as cyber-terrorism, she said hate speech needs the interest of offences affecting social fabric. FIA as a designated agency should play its role while imparting training to take cognizance of offences of dignity, modesty, cyber-stalking, and spamming, she said, adding that the Ministry of interior and Ministry of Information Technology must be technically equipped to overcome cybercrime challenges. “It’s the responsibility of Pakistan Telecom Authority to remove unlawful online content in line with our laws.” To maintain safeguards and precautions in handling computer emergencies, international cooperation for investigation should be made, she suggested.