ACHIEVEMENTS OF SINGAPORE’S OT CYBERSECURITY MASTERPLAN 2019
KEY THRUST 1
OT Cybersecurity Training
KEY THRUST 2 OT Cybersecurity Information Sharing and Analysis Center (OT-ISAC)
KEY THRUST 3 Strengthening Policies and Processes
KEY THRUST 4 Adopting Technologies for Cyber Resilience
HORIZONTAL ENABLER
Operational Technology Cybersecurity Expert Panel (OTCEP)
Considering the evolving cyber threat landscape and the need to enhance the actions supporting the various key thrusts in Masterplan 2019, Masterplan 2024 will help to ensure a competent OT cybersecurity workforce, enhance OT threat detection and intelligence to
stay ahead of emerging attack vectors and tactics, address consequence management to reduce potential of physical harm and endangering of lives when OT systems fail or shutdown unexpectedly, etc. Details of the updates in Masterplan 2024 are:
IMPROVE OT CYBERSECURITY PROFESSIONAL COMPETENCY AND PIPELINE
An area to address is the lack of OT cybersecurity manpower, especially for SMEs which also operate OT systems and/or support the OT ecosystem. It is important to ensure that operators of OT systems have continued access to skilled OT profess ionals that have good unde rstanding of OT cybersecurity practices at the operator and management level. Existing cybersecurity programmes targeted at the wider cyberspace of organisations in Singapore may be explored and expanded to include OT cybe rsecurity to bridge the capac i ty and
capability gaps in the short-term to equip SMEs in the OT sector to build cyber resilience.
More efforts can be made to ramp up awareness and increase the adoption of the OTCCF as a competency and caree r pathways for OT profess ionals through outreach act ivit i es. Fo r example, relevant workshops for CII and non-CII stakeholders to familia rise themselves and to assist them in applying OTCCF to attract the r ight people, train them adequately and map out their career pathways would be useful.
BG. Edward Chen Defence CyberChief, TheDig italand Intelligence Service
"Recent trends have shown that operational technology cybersecurity is crucial for national security. To this end, the Digital and Intelligence Service co-organises the Critical Infrastructure Defence Exercise (CIDeX) with the Cyber Security Agency of Singapore to train frontline cyber defenders and collectively raise Singapore's OT cybersecurity standards."
Mr. Goh Eng Choon President Cyber, ST Engineering
“Securing OT systems requires an approach that transcends traditional IT cybersecurity methods. Integrating ‘Security by Design’ and adhering to the principles of Confidentiality, Integrity, and Availability during the design and implementation phases is insufficient. As outlined in the CSA’s ‘Secure-byDeployment’ principles within the OT Cybersecurity Masterplan, we must adopt a holistic cybersecurity approach that prioritises safety and maintainability to ensure continuous operations and swift recovery.”
