Increasing Cybersecurity Posture and Preventive Initiatives of Enterprises in Singapore
Ministry of Home AffairsSpeakers
Summary
This question concerns an inquiry by Mr Yip Hon Weng regarding the Cyber Security Agency of Singapore’s (CSA) work in enhancing enterprise cybersecurity posture through preventive initiatives. Minister Josephine Teo clarified that while reports of Singapore being a top ransomware target were inaccurate, increased digitalisation has expanded the attack surface for local businesses. To address this, CSA and the Infocomm Media Development Authority provide pre-approved solutions via the SME’s Go Digital Programme, which has benefited over 6,000 enterprises. Furthermore, CSA launched the Cyber Essentials and Cyber Trust Marks in March to recognize organisations with robust cyber hygiene and comprehensive security practices. Minister Josephine Teo also highlighted talent development initiatives that successfully tripled the number of cybersecurity professionals to over 10,700 between 2016 and 2020.
Transcript
43 Mr Yip Hon Weng asked the Minister for Communications and Information in light of the recent report that Singapore organisations are among the most targeted in the world by ransomware attacks, whether an update can be provided on the work by Cyber Security Agency of Singapore in raising the cybersecurity posture of enterprises in Singapore, including focusing more efforts on preventive cybersecurity initiatives rather than to prioritise recovery.
Mrs Josephine Teo: The hon Member may be referring to a recent article in The Straits Times entitled "S'pore organisations among the most targeted in the world by ransomware attacks, study finds". The headline is inaccurate. The report does not claim that Singapore enterprises are amongst the most targeted by ransomware actors in the world, nor was evidence presented to back up such a claim.
Singapore's cyber landscape mirrors that of the global cyber landscape. In recent years, there has been an increase in cyber threats, such as ransomware, across the world and in Singapore. Recently, more digitalised and connected enterprises, such as MNCs, are based in Singapore. Local small and medium enterprises (SMEs) have also embraced digital technology to improve their productivity. These have led to a larger attack surface for cyber attacks.
A strong cybersecurity posture is essential. The Cyber Security Agency of Singapore (CSA) seeks to improve the cybersecurity posture of enterprises in Singapore through raising awareness, enabling adoption of cybersecurity solutions, recognising enterprises with good cybersecurity practices and developing cybersecurity professionals.
As SMEs tend to have limited IT and/or cybersecurity expertise and resources, CSA and the Infocomm Media Development Authority (IMDA) offer SMEs pre-approved solutions under SME's Go Digital Programme. More than 6,000 SMEs have benefitted from these cybersecurity solutions that provide endpoint protection, managed detection and response and unified threat management.
In March this year, CSA rolled out the Cyber Essentials Mark to recognise SMEs that have implemented cyber hygiene measures, and the Cyber Trust Mark to recognise enterprises with comprehensive cybersecurity measures and practices.
Lastly, our cybersecurity rests heavily on the talent we have in Singapore. CSA works with schools, Institutes of Higher Learning and industry to attract, train and develop cybersecurity talents. Over the five years from 2016 to 2020, the number of cybersecurity professionals in Singapore has increased threefold to more than 10,700.