The Cyber Security Agency of Singapore (CSA) will launch the SG Cyber Safe Programme to help Singapore enterprises to raise their cybersecurity posture.

The programme is part of the Safer Cyberspace Masterplan launched in October 2020, which aims to raise Singapore’s general level of cybersecurity.

In a speech by Dr Janil Puthucheary, Senior Minister of State, Ministry of Communications and Information at the MCI Committee of Supply Debate 2021, he said “Cybersecurity, therefore has to be a collective effort and a core part of our lives in this digital age-integrated into the products we use and the way that we behave online.”

“As more enterprises go digital, our exposure to cyber threats grows in parallel. Cyber attacks on companies have a far-reaching impact on our wider economy. So, as part of the Safer Cyberspace Masterplan, CSA will launch the SG Cyber Safe Programme to support companies in strengthening their cybersecurity.”

The SG Cyber Safe Programme is a concerted effort by the Government to help enterprises better protect themselves in the digital domain. Under this programme, initiatives to be introduced include:

Cybersecurity toolkits.

The toolkits, targeted at key enterprise stakeholders such as enterprise leaders, technical teams and employees, will provide leaders with a deeper understanding of cybersecurity issues and threats. It will also enable them to implement cybersecurity measures, including employee training, within the organisation.

CSA will be rolling out the employee cybersecurity toolkit by the end of 2021. For a start, CSA has worked with Smart Nation and Digital Government Group (SNDGG) and Civil Service College (CSC) to adapt existing cybersecurity modules – originally developed for public officers – for employees in the private sector.

Tools for enterprises to self-assess their cybersecurity posture.

This includes the Exercise-in-a-Box Singapore incident response simulation tool, which will be launched in partnership with the United Kingdom’s National Cyber Security Centre in the later half of 2021. CSA will also develop assessment tools on enterprises’ Internet domain, connectivity and email health.

SG Cyber Safe Trustmark.

The Trustmark will serve as a mark of distinction for enterprises that have put in place good cybersecurity measures that correspond to their risk profiles.

CSA will start industry consultations on the SG Cyber Safe Trustmark from April 2021 to seek views on the concept and implementation. CSA intends to introduce the trustmark by early-2022.

As the trustmark is intended for companies or projects with higher cyber risk, a separate cyber hygiene mark will also be developed to complement the SG Cyber Safe trustmark. More details on the trustmark and cyber hygiene mark will be announced in due course.

Building Cybersecurity Talent Base in Singapore

The Minister added that “Our cybersecurity talent base is a key enabler of these efforts and we are working closely with industry partners and Government agencies to nurture and grow our cybersecurity workforce.

He said that first of all, to meet near-term demand, the government will facilitate the training and upskilling of cybersecurity professionals, as well as fresh and mid-career non-cybersecurity professionals for cybersecurity jobs, through programmes such as IMDA’s Tech Skills Accelerator.

And secondly, to strengthen the talent pipeline for the longer term, the government encourages youths to pursue a career in the field through cyber outreach initiatives like SG Cyber Talent. There has been over 7,000 participants to-date.

The government has also launched the SG Cyber Leaders programme to create a community for current and developing cyber leaders to exchange ideas, and learn about global best practices.

The minister called on all Singaporeans to do their part to stay cyber safe. “All of us need to play our part to create a safer, more secure cyberspace. There are things we can do as individuals. We should enable two-factor authentication, update our software in a timely manner, choose a passphrase rather than a password and staying vigilant to spot signs of phishing.”