The existence of many risk management procedures helps institutions to cope with challenges and select acceptable risk management techniques. Cybersecurity risk management is one of the requirements of security management and it is significantly important in understanding the entire security profile of the institution. The aims of this study is to evaluate the impact of the cybersecurity risk management process applied in Malaysian higher education institutions. It will assess the effectiveness of existing cybersecurity risk management frameworks in Malaysian higher education institutions to monitor cybersecurity risk. The method of data collection utilised in this study is a semi-structured qualitative interview. Therefore, the sampling of 10 public universities and 12 cybersecurity risk management officers from the departments in charge of information security risk management contributed to this study and the data provided were enough to reach data saturation. The information gathered from respondents is transcribed and coded word by word to identify themes and sub-themes. As a result, a thematic analysis of the data is performed based on the information collected from participants. It expects to discover the strengths and deficiencies of the present frameworks used in higher education institutions. However, the participants from all the universities visited for this study deliberated that the cybersecurity risk management frameworks were considered as one of the most successful innovations in the area of higher education institutions in Malaysia. It is believed that this study would contribute significantly to understanding the performance and usefulness of cybersecurity risk management frameworks in Malaysian public universities.