KUALA LUMPUR: LGMS Berhad is a publicly listed cybersecurity consulting company dedicated to delivering specialised cybersecurity assessments, consultations, and advisory services.
Established in 2005, the company has built a reputation for integrity and excellence by providing professional services to local, regional, and international clients across various industries. To date, the company has completed over 1,000 security projects for organisations worldwide.
LGMS stands out as the first and only company in Malaysia to hold three crucial PCI credentials: Approved Scanning Vendor (ASV), Qualified Security Assessor (QSA), and 3DS Assessor. This achievement further solidifies its position as a cybersecu- rity leader, having also been the first CREST-accredited company for penetration testing services in Malaysia.
Over the years, LGMS has garnered numerous accolades, including multiple international certifications and awards. It has also established strategic partnerships with global lead- ers such as Mitsui & Co, Ltd, Alibaba Cloud, WithSecure Corporation, and TIME dotcom Berhad. Additionally, LGMS formed a joint venture with TÜV TRUST IT to provide comprehensive cybersecurity testing and certification services.
At the Pikom Digital Excellence Awards 2024, LGMS won in the Cy- bersecurity (Advisory) category, and its founder and executive chairman, Fong Choong Fook, also won the Tech Entrepreneur (Cybersecurity) award. He represented the company at the event and received the awards.
How does this accolade help your business?
We are grateful for Pikom's recognition of our contributions to the industry, both locally and internationally. Being the first of its kind in this industry is no easy feat, and we will continue striving to meet international standards. Currently, we have the most number of internationally certified consultants in-house, and we are committed to ongoing growth.
How long have you been in the cybersecurity industry?
I have been in the industry for over 20 years, transitioning from education to providing professional ser- vices to the country and our clients. LGMS has experienced significant growth, including our IPO listing two years ago. Since then, we have accelerated our expansion in cybersecurity. As chairman, I remain deeply involved in the technical aspects of IT security.
How does education form a core part of cybersecurity advisory? Education is integral to our ap- proach, as I initially provided cybersecurity training to personnel and organisations. This training helped businesses build their cybersecurity capabilities, leading us to evolve into a professional service provider. Today, we are the largest cybersecurity assessment firm in the country and the first publicly listed cybersecurity company in Malaysia.
What is the best way to approach cybersecurity?
The key to successful cybersecurity, despite evolving technologies, is fostering better cybersecurity awareness. Cyberattacks and threats of- ten result from a lack of focus. We must continuously enhance our se- curity awareness. Regardless of the technologies we implement, human awareness remains a crucial factor in achieving success in cybersecurity.
Are companies investing adequately in cybersecurity?
Proper scoping is essential. Much like health checks, where patients may seek the cheapest treatment despite knowing that higher costs often correlate with better services, organisations tend to neglect the importance of thorough cybersecurity health checks. Every security breach necessitates intervention, highlighting the need for comprehensive and proactive cybersecurity measures.
Who are your clients?
Our clients include major organisations, mainstream banks, insurance companies, tel- ecommunications firms, and government agencies. Some clients come to us after expe- riencing breaches, seeking to re-establish proper cybersecurity practices. While we are not the cheapest option, we provide a comprehensive range of services. Recently, in June, the digital minister launched our cybersecurity hardware so- lutions, developed over two years. We plan to promote these solutions to SMEs.
How does your solution help customers in their day-to-day business?
We emphasise independ- ence in our services. We do not sell third-party products, which distinguishes us in the cybersecurity field. When seeking consultancy from a cybersecurity firm, clients should ensure that the firm's independence and expertise align with international standards.
Recognising that not all SMEs can afford consultants, we developed our own solutions, which have already won two awards and are pending patent approval.
Based on your personal experience, what are the three most important things that every aspiring entrepre- neur should know and possess? Honesty and integrity are crucial. In the service industry, these values are essential for providing the highest level of service and building trust and commitment with customers.