From May, small- and medium-sized enterprises (SMEs) in Singapore can improve their cyber resilience through cyber health “checkups”.
These health checks will be conducted by CISOaaS (chief information security officers as a service) cybersecurity consultants onboarded by the Cyber Security Agency of Singapore (CSA).
The CISOaaS consultants will then guide SMEs to develop a tailored cybersecurity health plan that will also help them attain CSA’s Cyber Essentials mark. The Cyber Essentials mark serves to recognise the organisations that have put in place good cyber hygiene measures.
The CISOaaS consultants can also help those already certified with the Cyber Essentials mark progress towards adopting a risk-based approach to cybersecurity with CSA’s Cyber Trust mark.
Eligible SMEs can enjoy up to 70% co-funding support when they sign up with the CISOaaS cybersecurity consultants onboarded by CSA.
“Cyber threats show no signs of abating… [so ] we aim to reach out to more SMEs and introduce them to the new CISO-as-a-Service scheme to level up their cyber health. We are heartened that over 100 companies have gotten or are in the process of getting certified, and we hope to have more come on board,” says Dan Yock Hau, CSA’s assistant chief executive.
See also: Alibaba anoints new chief in revamp of stalling commerce arm
Guided by MAP
CSA’s cybersecurity health plan is part of the activities under the MAP initiative for Cyber Security and Digital Trust launched earlier today. It aims to help SMEs strengthen their defence and response to cyber threats while enhancing digital trust in a digitally connected business landscape.
“The reality is that companies, big and small, are not spared from the risk of cyberattacks. Take ransomware for example. In 2021, local ransomware incidents reported to SingCERT spiked to 137 cases, 54% more than in 2020. In 2022, the number of reported cases remained at this level. Many more go unreported, and SMEs continue to make up the bulk of the affected companies. Companies need to take these threats seriously and invest the necessary attention and resources to strengthen their cyber defences," says Tan Kiat How, Senior Minister of State for Communications and Information, at the launch.
See also: Break up Google? What’s at stake in antitrust action
This MAP initiative will help SMEs to improve their cybersecurity posture by:
- Breaking down cybersecurity implementation into modular steps and encouraging more companies to embark on the journey
- Addressing business-specific concerns through a customised journey of change to suit companies of differing sizes and readiness
- Create flexible transformation pathways that allow companies to enter and exit at each stage.
MAP is a tri-phased thematic/industry-based initiative involving the Singapore Business Federation, the Infocomm Media Development Authority of Singapore (IMDA) and nine ecosystem partners. Partners include Amazon Web Services, Association of Information Security Professionals, Blackpanda, KnowBe4, PwC Singapore, SGTech, Singtel, SPTel and Stone Forest IT.
The first phase is “Mindset Shift”. Activities in this area will provide a broad-level introduction to help SMEs understand the importance of cybersecurity and keep themselves updated on cyber threats and domains of cybersecurity beyond basic protection.
The second phase is “Analysis of Potential”, which provides targeted bite-sized activities to help SMEs identify areas and relevant initiatives to begin. Examples include a session by PwC Singapore and SGTech on “Managing Risks on your Digital Trust Strategy” and Blackpanda’s session on “Proof of Life Exercise: Ransomware”.
The last phase is “Pathway Assignment”, which involves 1-on-1 consultation and guidance tailored to the specific needs of the business so they can implement the right programmes and address their business priorities. CSA’s Cyber Security Health Plan is one example of such an activity.
“It is heartening to know that close to 80% of our participants present today have some level of basic cybersecurity practices in place and are keen to do more to enhance the cyber defence of their business,” says Tan Chee Wee, executive director of Advocacy and Policy Division at SBF.
To stay ahead of the latest tech trends, click here for DigitalEdge Section
He adds: “SBF, an advocate of CSA’s SG Cyber Safe programme and IMDA’s data protection initiatives, encourages our members to adopt up-to-date cybersecurity and data protection practices to strengthen digital trust in the fast-evolving security landscape so that they can respond appropriately to threats and protect their digital assets.”
The MAP initiative is not new. It was first introduced in March 2021 during the pandemic as a response to the disruptions faced by the business community.
Three runs of the initiative have been conducted, with the first focused on the wholesale and retail trade sector, the second on the logistics sector and the third on sustainability.
Over 500 businesses have participated and benefitted from the past MAP runs, acquiring knowledge and skills in digitalisation, internationalisation, process optimisation, and sustainability.
