Increased cyber attacks in Indonesia have forced the nation to establish a robust cybersecurity infrastructure. In 2023, the country suffered a devastating attack when 34 million passports were stolen from the Immigration Directorate General, opening the citizenry up to scams and identity theft cases.
Furthermore, reporting 90 breaches in four years placed Indonesia in the 84th position on the National Cyber Security Index (NCSI), which measures a state's cyber security readiness compared to other countries. This ranking indicates that Indonesia is below the global average in cybersecurity readiness.
Consequently, the elevation of cybersecurity in Indonesia to a top priority is evident. Projections indicate the market revenue will soar to USD 2.39 billion by 2024, with an annual growth rate of 10.40%, reaching a promising USD 3.92 billion by 2029.
Like other countries in the Association of Southeast Asian Nations (ASEAN), Indonesia has had to find ways to cope with the vulnerabilities caused by continued digitalisation. The COVID-19 pandemic ushered in a new world of remote work and extensive data risks as the region sought to power its digital economies.
The estimated cost of cybercrime is USD 5.41 billion in 2024 and is on target to grow to USD 6.48 billion by 2028. Cyber attacks are more sophisticated than ever, using techniques like ransomware, phishing, social engineering, supply chain disruptions, and more.
Indonesia's online safety infrastructure
Over the years, Indonesia has been making concerted efforts to fortify its online safety infrastructure. Despite a dip in the cyber solutions market following the Ukraine-Russia war, the country remains steadfast in its mission to combat the escalating cybercrime threats.
The cybersecurity market is abuzz with the contributions of key players like Booz Allen Hamilton, Cisco Systems, Broadcom, F5, IBM, Microsoft, and Raytheon, all working in unison to enhance Indonesia's cyber safety.
Some of the Indonesian government initiatives include:
Strengthening the legal framework: Laws on cybercrime include Law No.36/1999 on Telecommunication, which regulates wiretapping activities and any activities that harm the network. No.11/2008 on Electronic Informations and Transactions focussing on online hate speech, pornography, gambling, and eCommerce transactions.
No.19/2016 on Electronic Information and Transactions adds other illegal activities, such as hoaxes and spreading fake news. Finally, the Personal Data Protection Law protects Indonesians by shielding personal and individual data from leaking.
Online safety events and conferences: Stakeholders hold online safety events throughout the year, enabling business leaders in different ecosystems to understand and address the threat. For example, the IndoSec Summit is on September 24th-25th, 2024, at the Jakarta Convention Center. It unites industry experts to collaborate and discuss cutting-edge technology solutions.
Regulatory measures: The Indonesian government licensed Starlink to operate, becoming the third country in ASEAN after the Philippines and Malaysia to do so. While the company's role was to use low-Earth orbit satellites (LEO) to provide internet connectivity to rural areas, the network expansion may cause critical security concerns, such as disruptions, unauthorised access, and data breaches. Thus, the government must implement regulatory measures to ensure the service runs smoothly and safely for Indonesians.
Adopting new technologies: According to professional services firm PricewaterhouseCoopers (PwC), the country is addressing its online safety concerns. For example, state-owned Bank Rakyat Indonesia signed an MOU (memorandum of understanding) to develop a metaverse ecosystem which enables customers to access safer cloud-based services.
Moreover, they should consider Cyber-Resiliency-as-a-Service (CRaaS). It is an AI-based solution that proactively identifies and responds to online threats, including protecting user profiles through strict access controls (zero-trust approach).
Challenges and obstacles for Indonesia's cyber safety
Some of the region's cybersecurity challenges include each country's disjointed online safety approaches, few cybercrime laws, and tech talent shortages. While ASEAN passed the Framework on Personal Data Protection in 2016 as a guide to enhance personal data protection, each government has its own cyber safety approach.
The lack of sufficient tech expertise makes digital infrastructures challenging to manage and vulnerable to attacks. This shortage of skilled cybersecurity professionals hampers the effective management of digital infrastructures, leaving the region more susceptible to cyberattacks due to the lack of expertise in identifying and mitigating online threats.
Outlook for cybersecurity in Indonesia
Indonesia is well-poised to digitalise but must ensure its online safety framework grows simultaneously. Since companies now collect a lot of data, they must test their systems often to be confident that the security systems in place work. Even though no solution can thwart every threat, experts must at least install essential cyber solutions.
Leaders must implement the cyber safety law to fine or imprison those who harm others online or steal their property or finances. The best way to limit cyber attacks in Indonesia is to show cybercriminals that there are consequences.
Business owners should also be proactive by ensuring cybersecurity is not limited to the IT department only. It should be a company-wide culture, whether employees are working on-premise or remotely, and there should be mandatory data backups.
Finally, stakeholders should participate in events, training, and exercises to boost cybersecurity in Indonesia and the rest of the region.
No comments:
Post a Comment