Despite significant investment in security technologies, major organisations are still being compromised, underscoring that strong tools alone do not guarantee safety. Many still mistake cyber resilience for robust defences, when its actual measure is the ability to maintain operations despite disruption.
Achieving this demands clear visibility, rapid detection, and the agility to adapt as threats evolve. In an exclusive interview between BusinessToday and Stephen Goudreault, Cloud Security Evangelist at Gigamon, the expert shared his insights on why these fundamentals are often overlooked and what businesses must do to close the gap.
Understanding the Real Measure of Cyber Resilience
Gigamon’s 2025 Hybrid Cloud Security Survey shows that more than half of global security and IT leaders experienced a data breach in the past year, even among organisations with seemingly mature frameworks. In Malaysia, only 3% of organisations rate themselves as having a “mature” level of readiness required to withstand modern threats.
These findings underline that resilience is not measured by audit scores or security architecture diagrams; it is measured by how quickly companies can detect, contain, and recover from attacks through deep, continuous visibility into data-in-motion.
This data raises questions about whether cybersecurity ratings and compliance checklists have become more of a box-ticking exercise. Goudreault believes that, in many cases, they have. Compliance frameworks remain critical, but they often reflect intention rather than proper operational effectiveness.
Many organisations can pass an audit but still lack visibility into encrypted traffic or East–West movement—areas where the majority of modern malware hides. Attackers, of course, do not operate according to compliance standards. Readiness depends on continuous, real-time insight that validates whether security controls are working as intended.
The Cost of Visibility Gaps – and How to Address Them
The consequences of relying heavily on ratings without investing in deeper visibility can be severe, both economically and reputationally. Malaysia suffered RM1.5 billion (SGD 454.5 million) in cybercrime losses in 2024, affecting over 35,000 victims.
High-profile incidents like the ransomware attack on Malaysia Airports Holdings Berhad, which involved a USD 10 million ransom demand, underscore how visibility gaps lead directly to operational disruption, regulatory fines, and public trust erosion.
For businesses, investing in deep observability is not merely a cybersecurity measure but a vital business decision that protects revenue, reputation, and stakeholder confidence.
To strengthen cyber resilience across supply chains without compromising agility, Goudreault recommends Malaysian organisations focus first on awareness. Understanding who and what is connected to their digital ecosystem—including vendors and service providers—is crucial.
Analysing network-derived metadata such as application interactions and traffic patterns helps uncover risks missed by traditional audits.
Coupling this with strong segmentation and least-privilege access controls limits lateral movement if a third party is compromised. Real-time insight into encrypted and lateral traffic enables early anomaly detection without slowing legitimate business operations.
This balanced approach allows companies to innovate confidently while maintaining robust security, turning cybersecurity into a growth enabler rather than a constraint.
Integrating Governance, AI Risk, and Evolving Regulation
The rapid evolution of AI-driven cyberattacks demands not only better technology but stronger leadership oversight. Globally, CISOs are reporting more sophisticated phishing, surging AI-powered ransomware, and attacks targeting large language models.
For Malaysia, where only a small proportion of organisations have achieved mature cybersecurity readiness, AI risk must be embedded into governance. Boards must ensure AI-related decisions balance opportunity with operational and reputational risk.
Regulation in the region is evolving, with Malaysia’s Cybersecurity Act 2024 providing a more comprehensive framework for protecting the National Critical Information Infrastructure across 11 key sectors. The Act aligns closely with global standards such as ISO/IEC 27001 and NIST.
However, threat actors are evolving faster than regulation can adapt. MyCERT’s Q2 2025 report recorded a 24% quarter-on-quarter rise in incidents, with fraud accounting for 80% of cases. Organisations must therefore go beyond compliance by monitoring AI systems, mapping AI-related threat surfaces, and managing AI as both a risk vector and a catalyst for innovation.
For business leaders, network-derived metadata is becoming an invaluable tool for operational and strategic decision-making. It provides clear visibility into how data moves across hybrid environments, helping identify inefficiencies, optimise resources, and highlight risks before they become incidents.
Combined with AI and analytics, it enables organisations to detect unusual activity, respond faster, and better align IT and security investments with business priorities. This concept shifts cybersecurity from a reactive cost centre to a strategic enabler.
Building Predictive Resilience for the Future
Looking ahead, the most notable opportunities lie in organisations that can leverage network intelligence and deep observability to anticipate threats rather than react to them. In Malaysia, common blind spots include encrypted traffic, cloud East–West movement, and unmanaged IoT endpoints.
By investing in continuous monitoring, real-time telemetry, and autonomous observability, businesses can achieve predictive resilience.
Goudreault also encourages organisations to consider deploying internal AI or LLM solutions to map operational risks and improve visibility—provided proper guardrails and governance are in place.
Ultimately, deep observability helps businesses reduce disruptions, strengthen customer confidence, and accelerate innovation. Those who invest now will be well-positioned to define Malaysia’s next generation of digital resilience.
