Dr. Nurul Nuha Abdul Molok is an Associate Professor at the Department of Information Systems, Kulliyyah of Information and Communication Technology (KICT). She obtained her BSc in Computer Science (Artificial Intelligence) and MSc in Computer Science (Information Systems) from Universiti Malaya. She studied PhD at the University of Melbourne, Australia. Her PhD research focused on the use of social media amongst employees, looking at the potential for leakage of organisational information and its impact to organisations. 

Previously, she had a short stint (1 year) in the IT industry before joining Malaysian Centre for Remote Sensing (MACRES), currently known as Malaysian Space Agency (MySA), Ministry of Science, Technology & Innovation (MOSTI) as a Research Officer (Feb 2003 – Oct 2006). Besides doing research and managing ICT projects in the agency, her main task was coordinating the ISO 27001 Information Security Management Systems (ISMS) certification project for the organization and it was the first government agency in Malaysia to be certified to ISO/IEC 27001:2005. During that time, she obtained a certificate for ISO 27001 ISMS Lead Auditor from EQS Asia – Excel UK.

To satisfy her passion for teaching and knowledge sharing, she joined the academia in November 2006. Since then, her taught courses are Management of Cybersecurity, Risk Management, Control and Audits of Information Systems, Business Continuity & Disaster Recovery and Management Information Systems. She has supervised (and currently supervising) both undergraduate (Final Year Projects) and postgraduate (Master of IT, Master of Protective Security Management and PhD) students. For research, she is the Leader for Cybersecurity Governance, Risk & Compliance research unit (RU12) and, an associate member of CyberSecurity Centre of Excellence (COE), and Information Systems, Internet and Governance (ISIG) research groups, at IIUM. She is also a member of Cyber Security Academia Malaysia (CSAM), Malaysian Chapter for Association of Information Systems (MyAIS), Internet Society (ISOC) and GlobalRisk Community. 

Her research works were published in journals (WoS/ISI Q1 and Scopus), conference proceedings and books, both locally and globally. She has presented at international and local conferences and seminars, both for academia and industry. She was a consultant for ICT government projects including RUU Keselamatan Siber and RUU Perkongsian Data, and has been a trainer for public and private agencies in the area of AI and Cybersecurity Governance. As part of community services, she has conducted cyber safety and security advocacy programs for teachers, parents and students at local schools and communities (B40 and women), and senior citizens.

Apart from teaching, doing research and consultancy, she is currently the Deputy Director (Governance) at the Office of Knowledge for Change and Advancement (KCA) and Lead Auditor for ISO 27001 ISMS at IIUM. Since June 2008 until now, she is a Working Group member in the ISO/IEC JTC 1/SC 27/ WG 1 “Information Security Management Systems”, Information Security Technical Committee, within the Department of Standards Malaysia, MOSTI. This group is responsible to provide feedback in regard to the development and/or revision of the international standards for information security management. Other than certified ISMS Lead Auditor, she is also a certified Cyber Defender Associate from Cyber Range Malaysia.