Singapore’s robust cybersecurity framework and its leadership in driving policies and setting best practices have received a thumbs-up from (ISC)², global non-profit association of certified cybersecurity professionals.

In its report, (ISC)² said Singapore updated its cybersecurity strategy in 2021, by building a resilient infrastructure, enabling a safer cyberspace, and enhancing international cyber cooperation. This is in addition to developing a vibrant cybersecurity ecosystem and growing a robust talent pipeline.

These moves were in response to the changing threat landscape and to boost cyber resilience. Singapore has experienced a high number of cyber attacks in recent years. For example, in the form of SMS-phishing scams targeting bank customers. One study found that 65 per cent of organisations in Singapore were hit by ransomware attacks in 2021.

Cyber resiliency is a national security concern for Singapore as it strives to be a world-class, tech-driven city-state, said (ISC)² in the report "Global Approaches to Cyber Policy, Legislation and Regulation", which it published together with a think tank, Royal United Services Institute (RUSI). Singapore was one of six jurisdictions studied in the report. The others were Japan, the UK, US, Canada, and the European Union.

Over the years, Singapore has implemented numerous regulations and policies to improve its cybersecurity posture, including the 2018 Cybersecurity Act that provided a legal framework for the protection of critical information infrastructure (CII); licensing requirements for cybersecurity providers; and the Complimentary Code of Practice which set out measures and standards that CII businesses must implement.

The report also highlighted that Singapore has managed to reduce the cyber talent gap by investing in workforce development and introducing other measures to attract highly skilled workers such as through visa programmes like TechPass.

“Going forward, countries and governments must ramp up their efforts in cyber defence,” said Clar Rosso, CEO of (ISC)².

One important area where Singapore and other nations can move ahead is to enhance international collaboration as well as work with industries and the private sector to establish common standards, protocols and best practices, she said.

“Findings from the report provide valuable insight into top legislative and regulatory priorities, which emphasises the need for greater harmonisation among policymakers, cybersecurity professionals and other stakeholders to improve cyber resilience and address pressing cybersecurity challenges in 2023 and beyond.

“To protect our national security, economies, critical infrastructure, and the data and privacy of our citizens, we need consistent, strong, forward-looking and joined up policies that enable cybersecurity professionals around the world to stay laser-focused on the most critical aspects of their jobs,” she stressed.

In international collaboration, Singapore is co-chairing with Estonia the UN Group of Friends on e-governance and cybersecurity. It has also established the ASEAN Singapore Cybersecurity Centre and holds the annual Singapore International Cyber Week. Both of which assist with fostering cooperation in the field.

Most recently, the Monetary Authority of Singapore also collaborated with the US Department of Treasury to run cybersecurity drills aimed at testing the resilience of banks in Singapore and the US.

Naveen K. is a freelance writer.