September 9, 2024
Subscribe
Search
Close this search box.
Linkedin-in Twitter Facebook-f Youtube Instagram
#image_title

7th Annual Philippine OpenGov Leadership Forum 2024, 24- 26 September 2024 - CLICK HERE FOR DETAILS

We are creating some awesome events for you. Kindly bear with us.

Singapore: Enhancing Public Sector Data Security

Getting your Trinity Audio player ready...

The Government has released its fifth annual update on efforts to enhance the public sector data security regime for the fiscal year 2023 (1 April 2023 – 31 March 2024). This report highlights the significant progress made, including the successful implementation of all 24 initiatives recommended by the Public Sector Data Security Review Committee (PSDSRC) in 2019.

Image credits: Ministry of Digital Development and Information

In FY2023, the government reported 201 data incidents, an increase from 182 incidents in FY2022. This rise is attributed to the growing volume of digital government services, which has led to more data being handled and, consequently, more incidents being reported. The increase may also reflect improved awareness among public officers about the importance of reporting data incidents.

Despite this rise, the majority of reported incidents were of low severity. Notably, there were no incidents assessed as high severity for the fourth consecutive year. Additionally, medium severity incidents decreased from 46 in FY2022 to 29 in FY2023. These improvements are largely due to the progressive implementation of enhanced security processes, technical measures, and heightened public sector awareness regarding data security.

Several significant measures have been introduced to strengthen data security in FY2023:

Expansion of Central Privacy Toolkit (Cloak)

Launched in March 2023, the Central Privacy Toolkit, known as Cloak, has been enhanced with new features to support privacy-preserving technologies. It has been utilised by 1,400 public officers across 90 agencies. Notably, its free-text anonymisation feature has anonymised 20 million documents and supported over 20 generative AI use cases within the government.

Deployment of Automation Tools

By March 2024, all eligible government systems were equipped with the Central Accounts Management (CAM) tool. This tool automates the removal of unnecessary user accounts, reducing the risk of unauthorised access and exploitation of dormant accounts. Additionally, enhancements to the Government’s Data Loss Protection (DLP) tool have prevented accidental loss of sensitive data. Since September 2023, email recipients can no longer view the addresses of other external recipients when there are more than 30 recipients.

Enhancing Public Service Competencies

Recognising that eliminating data incidents entirely is challenging, the Government has focused on improving response capabilities. In August and September 2023, an annual central ICT and Data Incident Management exercise was conducted, involving 31 agencies across four Ministry Families. This exercise aimed to enhance coordinated and efficient incident response.

Additionally, gamified events and a refreshed Data Security e-learning module, introduced in February 2024, have been designed to engage public officers and educate them about data protection in the context of new technologies and trends like Large Language Models (LLMs) and phishing scams.

Ongoing Commitment to Data Security

The Government remains dedicated to maintaining a robust data security regime. All 24 PSDSRC initiatives have been implemented, reflecting the Government’s commitment to continually reviewing and enhancing data security measures. Future updates and new initiatives will be shared on the Ministry of Digital Development and Information (MDDI) website to ensure transparency and ongoing improvement in public sector data security.

Data management in the public sector is governed by the Public Sector (Governance) Act (PSGA) and the Government Instruction Manual on Infocomm Technology & Smart Systems Management (IM on ICT&SS Management). The PSGA and IM on ICT&SS Management outline the Government’s approach to managing and protecting data, including personal data, with a focus on integrated service delivery across agencies.

In contrast, the Personal Data Protection Act (PDPA) regulates data management in the private sector, where each organisation is individually accountable for its data, and there is no expectation of integrated service delivery across different private sector entities.

The PSGA, enacted in 2018, introduced criminal penalties for public officers who improperly disclose, misuse, or re-identify data. This complements the existing policies in the IM on ICT&SS Management, which has governed data security in the public sector since 2001.

Recommended Stories

Linkedin-in X-twitter Facebook-f Youtube Instagram

© 2024 OpenGov Asia – CIO Network Pte Ltd.

MENU

Linkedin-in Twitter Facebook-f Youtube Instagram

PARTNER

Qlik Website Logo

Qlik

Globe Facebook Twitter Linkedin

Qlik’s vision is a data-literate world, where everyone can use data and analytics to improve decision-making and solve their most challenging problems. A private company, Qlik offers real-time data integration and analytics solutions, powered by Qlik Cloud, to close the gaps between data, insights and action. By transforming data into Active Intelligence, businesses can drive better decisions, improve revenue and profitability, and optimize customer relationships. Qlik serves more than 38,000 active customers in over 100 countries.

PARTNER

#image_title

CTC

Globe Facebook Twitter Linkedin Youtube

As a Titanium Black Partner of Dell Technologies, CTC Global Singapore boasts unparalleled access to resources.

Established in 1972, we bring 52 years of experience to the table, solidifying our position as a leading IT solutions provider in Singapore. With over 300 qualified IT professionals, we are dedicated to delivering integrated solutions that empower your organization in key areas such as Automation & AI, Cyber Security, App Modernization & Data Analytics, Enterprise Cloud Infrastructure, Workplace Modernization and Professional Services.

Renowned for our consulting expertise and delivering expert IT solutions, CTC Global Singapore has become the preferred IT outsourcing partner for businesses across Singapore.

PARTNER

#image_title

Planview

Globe Facebook Twitter Linkedin Youtube

Planview has one mission: to build the future of connected work. Our solutions enable organizations to connect the business from ideas to impact, empowering companies to accelerate the achievement of what matters most. Planview’s full spectrum of Portfolio Management and Work Management solutions creates an organizational focus on the strategic outcomes that matter and empowers teams to deliver their best work, no matter how they work. The comprehensive Planview platform and enterprise success model enables customers to deliver innovative, competitive products, services, and customer experiences. Headquartered in Austin, Texas, with locations around the world, Planview has more than 1,300 employees supporting 4,500 customers and 2.6 million users worldwide. For more information, visit www.planview.com.

SUPPORTING ORGANISATION

#image_title

SIRIM

Globe Facebook Twitter Linkedin Youtube

SIRIM is a premier industrial research and technology organisation in Malaysia, wholly-owned by the Minister​ of Finance Incorporated. With over forty years of experience and expertise, SIRIM is mandated as the machinery for research and technology development, and the national champion of quality. SIRIM has always played a major role in the development of the country’s private sector. By tapping into our expertise and knowledge base, we focus on developing new technologies and improvements in the manufacturing, technology and services sectors. We nurture Small Medium Enterprises (SME) growth with solutions for technology penetration and upgrading, making it an ideal technology partner for SMEs.

PARTNER

#image_title

HashiCorp

Globe Facebook Twitter Linkedin Youtube

HashiCorp provides infrastructure automation software for multi-cloud environments, enabling enterprises to unlock a common cloud operating model to provision, secure, connect, and run any application on any infrastructure. HashiCorp tools allow organizations to deliver applications faster by helping enterprises transition from manual processes and ITIL practices to self-service automation and DevOps practices. 

PARTNER

#image_title

IBM

Globe Facebook Twitter Linkedin Youtube

IBM is a leading global hybrid cloud and AI, and consulting services provider, helping clients in more than 175 countries capitalize on insights from their data, streamline business processes, reduce costs and gain the competitive edge in their industries. Nearly 3,800 government and corporate entities in critical infrastructure areas such as financial services, telecommunications and healthcare rely on IBM’s hybrid cloud platform and Red Hat OpenShift to affect their digital transformations quickly, efficiently, and securely. IBM’s breakthrough innovations in AI, quantum computing, industry-specific cloud solutions and business services deliver open and flexible options to our clients. All of this is backed by IBM’s legendary commitment to trust, transparency, responsibility, inclusivity, and service. For more information, visit www.ibm.com