About Us
Information Assurance and Security (IAS)” (RU12), aligned with IT curricula, the research unit (RU)’s name was recently changed to “Cybersecurity Governance, Risk and Compliance (Cybersecurity GRC)” based on the MQA Computing Standard. While acknowledging the interchangeable use of “cybersecurity” and “information security,” the RU adopts the ISO/IEC 27100 definition of cybersecurity, focusing on preserving the CIA of information and protecting the digital ecosystem. Currently comprising 13 members from the Kulliyyah of Information and Communication Technology (KICT) and 2 from Ahmad Ibrahim Kulliyyah of Laws (AIKOL), the RU actively engages in research, consultancy for Malaysian government projects (including cybersecurity and data sharing bills), invited speaking engagements, collaborations, workshops, community programs, training, competitions, and local and international publications.
Initially, this research unit (RU) was established in 2017 under Cybersecurity Centre of Excellence. It was labelled as RU12 and it was called “Information Assurance and Security (IAS)”, in line with the naming convention used in ACM and IEEE curricula for information technology (IT). However, based on MQA Computing Standard 3rd edition (MQA, 2023), RU12 name was changed to Cybersecurity Governance, Risk and Compliance (Cybersecurity GRC). The change of name was approved in Kulliyyah Research Committee Meeting 1/2025 dated 25th April 2025.
The terms cybersecurity and information security are continuously being used interchangeably in both research and practice. Interestingly, the international standards of information security management, ISO/IEC 27000 series of standards are renaming the title of their recent standards such as ISO/IEC 27001:2022, ISO/IEC 27002:2022 and ISO/IEC ISO 27005:2022 to be “Information Security, Cybersecurity and Privacy Protection”.
While ISO/IEC 27100 (2020, p.1) defines cybersecurity as “safeguarding of people, society, organizations and nations from cyber risks”, we refer to cybersecurity as the protection of information from compromises to confidentiality, integrity, and availability “…focuses on the risks in cyberspace, an interconnected digital environment that can extend across organizational boundaries, and in which entities share information, interact digitally and have responsibility to respond to cybersecurity incidents.” (ISO/IEC 27100, 2020, p.vii).
Currently, we have 13 members from Kulliyyah of Information and Communication Technology (KICT), and 2 members from Ahmad Ibrahim Kulliyyah of Laws, (AIKOL)
(see Members below).
Our research unit organizes and participates in research activities in areas within the definition given above. Since 2017 until now, apart from ongoing research supervision, and teaching and learning activities, our members:
- have been appointed as consultants for the Malaysian government projects, including the development of the bills (Rang Undang-Undang) such as Cybersecurity Bill and Data Sharing Bill :
- have been appointed as invited speakers by academia and industry,
- have collaborated with local and international research institutions,
- organized workshops for Malaysian leaders,
- organized community programs for schools, B40 communities and elderly
- conducted cybersecurity training sessions (malware analysis, etc.) and cybersecurity competitions for students, and
- have published in local and international journals, and presented in local and international conferences.
We look forward to performing more impactful research, to empower our students and to collaborate with academia and industry, considering the importance of developing cyber resilience for Malaysia and beyond, in line with Tawhidic Epistemology and Ummatic Excellence .
Core Members
Read More
Dr. Nurul Nuha Abdul Molok, an expert in cybersecurity governance, risk, and compliance, serves as the IIUM lead researcher for this project. She is an Assistant Professor at the Department of Information Systems, IIUM. She holds a Bachelor’s degree in Computer Science (AI) and a Master’s degree in Computer Science (Information Systems) from University Malaya and her PhD in Information Systems Security from the University of Melbourne, Australia. Dr. Nurul Nuha leads the Information Assurance and Security research unit at IIUM and is actively leading the Siber Sejahtera flagship initiatives for the community. She is an ISO 27001 Certified Information Security Management Systems (ISMS) Lead Auditor accredited by EQS Asia – Excel UK. She is also a consultant and trainer for the public and private sector agencies .
Read More
Dr. Noor Hayani Abd Rahim obtained her bachelor’s and master’s degrees from the International Islamic
University Malaysia (IIUM). Completed PhD degree at the University of Malaya in the field of Information
Security. She joined IIUM in 2016 as an Assistant
Professor in the Department of Information Systems. She is currently the Head of the Department at the Center for IT Advancement at the Kulliyyah of Information and Communication Technology. Apart from academic qualifications she has worked in Telekom Malaysia Berhad for 5 years and experienced as a business analyst, IT planner, and International IT project manager. She is currently active in publishing papers in conferences and journals.
Read More
Dr. Nurazlin binti Zainal Azmi is an Assistant Professor at the Kulliyyah of Information and Communication Technology (KICT), IIUM. She holds a PhD in Natural User Interface from the University of Otago, New Zealand. Prior to joining IIUM in 2021, she was a Senior Lecturer at First City University College and a Tutor at Universiti Putra Malaysia. Her research interests include modeling and simulation, human-machine interaction, and interaction design. Dr. Nurazlin has published works on using affordable game controllers for 3D input and modeling facial wrinkles. At IIUM, she continues to explore the integration of computer graphics with cybersecurity, focusing on immersive, intelligent, and secure environments through techniques like 3D steganography, spatial encryption, and visual threat simulation, contributing to the advancement of digital resilience and visual computing.
Read More
Dr. Shuhaili Talib, Assistant Professor at IIUM’s KICT, holds a Bachelor of Management Information
Systems from IIUM, an MSc in Information Security
from Royal Holloway, and a PhD from Plymouth
University. She is a certified professional, holding
Certified in Cybersecurity (CC) by ISC2 and Certified Information Security Awareness Manager (CISAM). At IIUM, she teaches courses on Business Continuity and Disaster Recovery, Management Information Systems, Control and Audit for Information Systems,and Risk Management.
Dr. Shuhaili’s research interests encompass information security awareness and education, human security behavior , information security governance, cybersecurity, and information systems.
Associate Members
Professor Emeritus Dato' Dr. Mohamed Ridza Wahiddin
Read More
Dr. Ridza obtained his PhD (UMIST, UK) in
August 1989 in Quantum Optics, and a higher
doctoral degree DSc (UMIST, UK) in December 2004. He is the MOSTE 1994 National Young Scientist Award winner in recognition of his research in Quantum Optics. A recipient of the IDG ASEAN Chief Security Officer (CSO) 2011 Award and recognised by the Academy of Sciences Malaysia (ASM) as one of the 2017 Top Research Scientists Malaysia. He is a Fellow of the Malaysian Mathematical Sciences Society, Fellow of the Malaysian Institute of Physics and Fellow of the
Academy of Sciences Malaysia. He was the fifth Vice-Chancellor of Universiti Sains Islam Malaysia
(USIM). On 16 November 2024 the International Islamic University Malaysia (IIUM) conferred him the title of Emeritus Professor. Presently, he is a professor at Pusat Tamhidi, USIM and the Chair of the ASM Information Technology & Computer Science Discipline.(USIM).
Read More
Dr. Norbik is currently the Chief Digital
Officer (CDO) of the University and a Professor at the Kulliyyah of ICT in IIUM. Prof. Dato’ Dr. Norbik started his academic career in 1983 and has been attributed as one of the early pioneers of Cybersecurity in Malaysia . He has been a keynote speaker, visiting professor, and cybersecurity consultant and has advised organizations and governments globally. An Ernst & Young Best IT Entrepreneur nominee, he received the ISC2 Asia-Pacific Distinguished Award twice and multiple gold medals. His latest focus is integrating cybersecurity with blockchain for Islamic Fintech.
Read More
Dr. Akram Mohammed Zeki is a Professor at International Islamic University Malaysia’s Kulliyyah of Information and Communication Technology. He served in various leadership roles including Research Head and CENTRIS Deputy Director. He supervises over 30 graduate students and leads several research grants. Prof. Akram has published 10+ books, 155+ Scopus publications, and 45+ book chapters, earning university and national awards. He edits the Journal of Science and Technology and the International Journal of Islamic Applications in Computer Science and Technologies. He’s an IEEE Senior member and Trustee of the International Computing Institute of Quran and Islamic Sciences.
Read More
Dr. Abd Rahman Ahlan is a Professor at the Department of Information Systems, Kulliyyah of ICT, International Islamic University Malaysia. He is a registered Professional Technologist under the Malaysia Board of Technologist (MBOT). He has over 28 years of teaching experience at the undergraduate and postgraduate levels. He has taught students from the Bachelor of IT (BIT), Master of IT (MIT), Master of Business Intelligence and Analytics (MBIA), Master of Business Administration (MBA) as well as Master in Protective Security Management (MPSM). He also supervises PhD students. A principle researcher for a number of research projects, Dr. Abd Rahman has won several research and quality awards.
Read More
Dr. Mira Kartiwi graduated from the University of Wollongong, Australia with a Bachelor of Commerce in Business Information Systems, Master of Information Systems, and PhD on e-commerce adoption in Indonesian SMEs. She’s a full professor in Information Systems at International Islamic University Malaysia (IIUM) and directs the Centre for Professional Development. Her accolades include the Australia Postgraduate Award (2004), Higher Degree Research Award for Excellence (2007), and Honorary Fellowship at Wollongong (2011). A certified Moodle Educator and COIL instructor, she specializes in health informatics, e-commerce, data mining, and business strategy. Beyond academia, she advocates for cyberparenting and online safety across Indonesia, Malaysia, and Australia.
Read More
Dr. Zahidah Zulkifli, an associate professor in
Department of Information Systems, KICT, IIUM.
Specializing in Systems Analysis and Design
particularly in the context of Education Technology &
Management and Computer Ethics. Her work,
recognized with multiple awards, includes developing ontologies for ethical issues and advancing knowledge management. In 2021, she has been nominated in the category of Anugearah Akademik Harapan in Anugareh Akademik Negara (ANN) and awarded as one of the IIUM Top Researchers from 2019 -2021, with the Highest Amount of Grants Received. Currently, she is the Deputy Dean of the Postgraduate,Responsible Research & Innovation, KICT, IIUM.
Read More
Dr. Aidrina Sofiadin is an Assistant Professor at IIUM’s Department of Information Systems and Deputy Director of Innovation at the Office of Knowledge for Change and Advancement. She holds a PhD from Curtin University, Australia, focusing on Sustainable E-learning Framework. Her research centers on sustainable and humanized education to enhance student learning experiences. A certified professional with the Australian Computer Society and Malaysia Board of Technologists, she’s also a Virtual Learning Educator and COIL fellow instructor with training in XR and web development. Her achievements include a 2024 Gold Medal at ITEX for ADAM I.K.M.A.L. and a 2022 Silver Medal for an AR sustainable education app. Her publications promote holistic, empathetic learning environments.
Read More
Dr. Suhaila Samsuri is a Malaysian academic with over 20 years of experience in education, interactive multimedia design, gamification, and information privacy, particularly in the healthcare sector. She is recognized for integrating technology and game design into learning and healthcare systems to boost engagement and motivation. Her research focuses on gamified educational tools and addressing privacy concerns in hospital information systems. Notable contributions include studies on digital learning applications and privacy policy implementation in Malaysian healthcare. With a forward-thinking approach, she aims to advance game design, gamification strategies, and e-sports, bridging education, technology, and ethical practice.
Read More
Dr. Zainab Senan Mahmod Attar Bashi is an Assistant Professor at the Kulliyyah of Information and Communication Technology (KICT), IIUM. She holds a Ph.D., M.Sc., and B.Eng. from IIUM, specializing in computer engineering. Her expertise includes cybersecurity, IoT, information-centric networking, and digital communications. Dr. Zainab teaches courses such as Computer Networking, Cryptography, and Digital Forensics, and supervises postgraduate research in areas like machine learning for privacy, blockchain in cloud computing, and IoT systems. Her research includes work on halal supply chains, smart mirror technologies, and water quality monitoring using LoRa networks.
Read More
Dr. Sonny Zulhuda holds an LLB, MCL, and Ph.D. from IIUM, with his doctoral research focused on Malaysia’s legal framework for information security, including cybercrime, identity theft, and critical infrastructure protection. He is trained in quality and information security management systems (ISO 9001, ISO/IEC 27001), and is a certified trainer in digital etiquette. A recipient of the Oxford Internet Institute’s Web-science Doctoral Scholarship and a two-time ICANN Fellow, he is also affiliated with IAPP and ISACA Malaysia. Dr. Sonny has contributed to policy development in both Malaysia and Indonesia, including Malaysia’s National Cyber Security Policy (2006) and Indonesia’s Personal Data Protection Bill. He has developed and led extensive training on data protection compliance for various sectors.
Read More
Dr. Mahyuddin Daud is a senior academic at the Department of Civil Law, IIUM, specializing in Cyber Law, particularly Internet content regulation. He holds a PhD and LL.B from IIUM and an LL.M from UiTM. Since beginning his academic career in 2010, he has consistently received high student satisfaction ratings. He teaches contract, tort, and IT law and is a member of professional bodies like the Inns of Court Malaysia, MACFEA, and GigaNet. Dr. Mahyuddin has authored a textbook and several academic articles, including widely read research on online false content. His work has appeared in SCOPUS and ISI-indexed journals. In 2019, he served as an expert researcher for the Malaysian Parliament’s Agenda Reformasi Dewan Negara project. He also contributes to government-sponsored research and has been co-editor of the IIUM Law Journal since 2018.
Postgraduate Students
Azwarie Ahmad @ Mohd Yusof
Tahmid Alam
Wan Azlena Wan Mohamad
Read More
PhD in Computer Science & IT – ISMS Implementation in Malaysian Government Agencies. Ts. Azwarie Ahmad @ Mohd Yusof is a Malaysian information security consultant with 17+ years experience implementing and auditing ISO/IEC 27001 across government and financial sectors. His expertise spans cybersecurity, compliance, and risk management. Currently a Senior Consultant at SIRIM Berhad, he leads ISMS projects while providing training and consultation services. His academic background strengthens his practical approach to information security governance, helping organizations establish robust security frameworks aligned with international standards.
Read More
Tahmid Alam is currently a postgraduate student at International Islamic University Malaysia (IIUM) pursuing a Master in Computer Science and Information Technology by research. He is also a Graduate Research Assistant (GRA) at the Cybersecurity Governance, Risk and Compliance Research Unit in Kulliyyah (Faculty) of Information and Communication Technology, IIUM. He has previously completed his Bachelor degree in Information Technology, specialized in Information Assurance and Security (IAS) from IIUM as well. As an aspiring researcher, he is involved in a number of research projects, especially in the fields of Information Security, Risk Management, Cybersecurity, Cyber Threat Intelligence and so on.
Read More
Master by Research of Computing in Comp Sc & IT – Event-based Risk Assessment. Wan Azlena is an Information Systems Officer serving the Malaysian public sector, specializing in cybersecurity, focusing on assessing potential cyber-attacks that compromise information systems’ confidentiality, integrity, and availability. Her work emphasizes event-based approaches for identifying and mitigating risks in cybersecurity management. Her research contributions have been featured in academic colloquia and publications, advancing knowledge in this critical field. Her expertise helps organizations develop more responsive risk assessment frameworks that can adapt to evolving cyber threats in real-time.
Salman Md Shah
Read More
Master in Information Technology
Dissertation Title: Real-time Edge Detection Applying OpenCV in Python using Canny Edge Detection.