TLDR:
- Singapore has updated its OT cybersecurity blueprint to focus on data sharing and cyber resilience.
- The updated masterplan includes enhanced data sharing, policies, and skills training to address evolving cyber threats.
Singapore has updated its operational technology (OT) cybersecurity blueprint to focus on enhanced data sharing, policies and processes, and skills training. The Cyber Security Agency (CSA) announced that the blueprint has been expanded to include non-critical infrastructures due to the evolving threat landscape. The 2024 update aims to address threats targeting OT systems, heightened by geopolitical and technological shifts, including hacktivism attacks and increased attack surfaces due to technologies like edge computing and Internet of Things (IoT).
The revised masterplan includes mandatory cybersecurity measures for OT systems, training initiatives to boost cyber resilience, and new policies to drive fast responses to threats. There are plans to develop the local cybersecurity workforce and professional competency by integrating OT cybersecurity syllabus into computer science and engineering degree courses. The updated blueprint also focuses on data sharing and reporting to bolster Singapore’s cyber landscape’s situational awareness and better protect essential OT infrastructures.
The 2024 masterplan emphasizes the adoption of secure-by-deployment principles to safeguard the lifecycle management of OT systems. OEMs and cybersecurity vendors, including Honeywell, Schneider Electric, and Siemens Energy, have pledged to adopt these principles and ensure secure products by default. In addition, plans are underway to establish an OT cybersecurity center of excellence to research emerging OT cybersecurity technologies.
David Koh, CSA’s chief executive, highlighted the growing threats to the OT environment and the need for increased cybersecurity resilience. The convergence between IT and OT systems introduces new risks, requiring robust training and cybersecurity best practices adoption. The updated blueprint aims to mitigate cyber risks, improve visibility, and enhance collaboration to safeguard national security, public safety, and the economy.