Connecting to global cyber expertise; ramping up government cyber acumen; and promoting nationwide internet hygiene—the initiatives leave no one behind
The Singapore government has announced three initiatives to address cybersecurity and increase awareness of the cyber threats growing around the world.
The country’s Cyber Security Agency (CSA), in partnership with the Global Forum on Cyber Expertise, has created a new position called ‘Southeast Asia Liaison’ to be located at the ASEAN-Singapore Cybersecurity Centre of Excellence (ASCCE). The Liaison will connect the region and ASCCE’s existing efforts more closely with other GFCE member nations and organizations.
Next, an Inter-agency Counter Ransomware Task Force(CRTF)has been convenedto develop and make recommendations on possible policies, operational plans, and capabilities to improve Singapore’s counter ransomware efforts. The CRTF will comprise senior Government representatives from the technology, cybersecurity, financial regulation, and law enforcement domains. As ransomware is a cross-border problem, the CRTF will be looking into coordinating Singapore’s international engagement strategy to counter ransomware, and will be pushing for greater international engagement in cybersecurity cooperation, financial supervision, and cross-border law enforcement operations.
Finally, the CSA is launching an ‘Internet Hygiene Portal’ (IHP) that will serve as a one-stop platform for local enterprises to access cybersecurity resources and self-assessment tools so that they can adopt internet security best practices in their digitalization journey. The IHP will also publish an Internet Hygiene Rating table with a simplified view of each digital platform’s internet hygiene. This is aimed at helping consumers to make informed choices and improve safeguarding of their digital transactions.
The IHP rating is based on the average adoption of internet security best practices curated by CSA that are common globally recognized baseline internet standards and security controls. These include the use of the HTTPS protocol to secure website communications between parties; and DNSSEC to prevent DNS spoofing, hijacking and cache poisoning.