Regulation 41. Qualification and registration of auditors. (DIGITAL SIGNATURE REGULATIONS 1998

[Home] [Databases] [WorldLII] [Search] [Feedback]
Malaysia Legislation

P.U.(A) 359/98
DIGITAL SIGNATURE REGULATIONS 1998

PART VII - COMPLIANCE AUDITS

Regulation 41. Qualification and registration of auditors.

(1) A certified public accountant or an accredited computer security professional intending to act as a compliance auditor under section 20 of the Act shall satisfy the following requirements:

(

) holds such accreditation or qualification as the Controller may determine;

(

) has at least two years experience in trusted computer information systems, trusted telecommunications networking environments and professional audit techniques;

(

) has at least two years experience in digital signature technology, standards and practices; and

(

) demonstrates knowledge of the requirements of the Act and these Regulations that satisfies the Controller.

(2) A certified public accountant or an accredited computer security professional intending to act as a compliance auditor under section 20 of the Act shall apply in writing to the Controller to be registered as a qualified auditor.

(3) If the Controller is satisfied that the requirements under subregulation (1) have been complied with, the Controller may register the applicant as a qualified auditor.

(4) A qualified auditor registered with the Controller under these Regulations shall not operate as or in any way participate in the operation of or be concerned in a certification authority, a repository or a date/time stamp service.

(5) The Controller shall keep and maintain a Register of Qualified Auditors in such form as he thinks fit.

(6) A person may inspect the Register of Qualified Auditors and make copies of or take extracts from the Register.