ProtectHealth Strengthens Governance and Service Continuity with ISO 22301 Certification

5 March 2026

CYBERJAYA: ProtectHealth Corporation Sdn. Bhd. has reinforced its role as a key government agency and strategic healthcare provider by successfully achieving the ISO 22301:2019/AMD1:2024 Business Continuity Management System (BCMS) certification.

Chief Executive Officer Wan Mohd Hazwan Wan Mohd Najib received the ISO 22301 BCMS certification from CyberSecurity Malaysia Acting Chief Executive Roshdi Hj Ahmad, highlighting ProtectHealth’s dedication to enhancing business continuity and organisational resilience.

The certification underscores ProtectHealth’s commitment to strong governance and operational resilience, ensuring the ongoing delivery of vital healthcare financing initiatives and public-private partnerships. It affirms the organisation’s responsibility to provide reliable, accessible, and uninterrupted healthcare services across the country.

The certified BCMS supports the sustained operation of ProtectHealth’s key programmes, including PeKa B40, Skim Perubatan MADANI, SPIKPA (Insurans Kesihatan Pekerja Asing), and the Hospital Services Outsourcing Programme. It safeguards essential operational, financial, and coordination functions crucial to service delivery.

Wan Mohd Hazwan stated that the certification demonstrates the organisation’s readiness to manage disruptions and maintain service continuity. “This achievement reflects our dedication to stakeholders by establishing robust systems to protect operations, effectively manage risks, and enable swift recovery, ensuring essential services remain uninterrupted,” he said.

Roshdi highlighted that the certification showcases ProtectHealth’s proactive approach to embedding business continuity as a core organisational capability. “Business continuity is a vital aspect of good governance. This certification affirms ProtectHealth’s leadership in safeguarding continuous healthcare delivery, protecting public resources, and strengthening institutional resilience,” he explained.

The journey to certification began on 17 April 2025, and ProtectHealth successfully met all requirements in less than a year, placing it among organisations that achieved certification efficiently.

Looking ahead, ProtectHealth is also preparing to pursue ISO/IEC 27001 Information Security Management System certification, further enhancing its information security governance in line with international standards.