MCI response to PQ on Tracking of Local Companies which Experienced Cyber Attacks over Past Two Years and Measure to Equip Companies with Capabilities to Enhance Cyber Resilience

Parliament Sitting on 9 May 2022

QUESTION FOR WRITTEN ANSWER

36. Miss Cheng Li Hui: To ask the Minister for Communications and Information (a) whether the Government tracks the number of local companies which experienced cyber attacks over the past two years; (b) whether companies which have experienced cyber attacks are required to report to the authorities; and (c) what are the current measures to equip local companies with the capabilities to enhance cyber resilience and to deal with cyber attacks.

Answer:

1. The Cybersecurity Act requires owners of computers or computer systems designated as Critical Information Infrastructure (CII) to report cybersecurity incidents¹ related to CII to the Cyber Security Agency of Singapore (CSA). This enables CSA to monitor and safeguard the cybersecurity of CII, which are crucial to the continuous delivery of essential services.

2. Beyond CII, CSA encourages all companies to report cybersecurity incidents to SingCERT at www.csa.gov.sg/singcert/reporting, even if the affected systems are not designated as CII. Doing so helps to augment CSA’s awareness of the latest threats, and allows us to alert other companies to minimise the risk of them falling victim to similar cyber attacks.

3. In 2021, CSA received 1,238 reports of cybersecurity incidents from businesses, and other organisations. In the preceding year, CSA received 972 such reports.

4. CII owners are required by the Cybersecurity Act to put in place measures to meet cybersecurity standards set by CSA. This helps to safeguard CII against cyber attacks, and ensure their cyber resilience. For non-CII enterprises, in addition to SingCERT’s advisories and alerts, CSA launched the SG Cyber Safe Programme in 2021 to encourage and help companies strengthen their cybersecurity posture. As part of this programme, CSA recently rolled out a cybersecurity certification programme for enterprises – comprising the Cyber Essentials and Cyber Trust marks – to recognise enterprises that have implemented good cybersecurity practices. They are visible indicators for companies to differentiate themselves, and demonstrate that they have adopted the necessary cybersecurity measures to protect themselves and their customers. CSA has also developed cybersecurity toolkits for companies of various profiles to guide enterprise leaders and their employees on cybersecurity best practices.

5. I encourage all companies to apply for the Cyber Essentials and Cyber Trust marks, and take advantage of the toolkits and resources available on CSA’s SG Cyber Safe website.

--------------------------------------------------------------------------------------------------------------------------
¹ _{The specific types of cyber incidents that CII owners are required to report to CSA are prescribed as part of the Cybersecurity (Critical Information Infrastructure) Regulations 2018.}

Title	Type Events Forum Replies News Parliament QAs Press Releases Social Media Speeches Stories Clear Select All Done	Category Cyber Security Digital Defence Digital Readiness Government Technology Infocomm Media Libraries Personal Data Public Comms Others Clear Select All Done	Date 2023 2022 2021 2020 2019 2018 Clear Select All Done
Speech by Mr Tan Kiat How, Senior Minister of State, Ministry of Communications and Information at the “Overcoming the Financial Sector’s AIDA Talent Shortage: Roadmap for 2023 and Beyond” event on 22 May 2023	Speeches	Digital Defence, Cyber Security, Digital Readiness	22 May 23
Speech by Mrs Josephine Teo, Minister for Communications and Information, at the launch of "Stewardship of the Singapore Media Staying on Course" on 16 May 2023	Speeches	Others, Infocomm Media	16 May 23
MCI Response to PQ on Steps to Protect Consumers and Businesses from Losses due to Disruption of Digital Services by Service Providers	Parliament QAs	Digital Readiness, Digital Defence	09 May 23
MCI Response to PQ on Ensuring Development and Maintenance of Ethical Artificial Intelligence Standards	Parliament QAs	Cyber Security, Digital Readiness	09 May 23
MCI Response to PQ on Regulatory Framework for Artificial Intelligence Governance in Singapore	Parliament QAs	Cyber Security, Government Technology	21 Apr 23
Transcript of Welcome Remarks by Mrs Josephine Teo, Minister for Communications and Information, at SingPost’s Buka Puasa on 13 Apr 2023	Speeches	Others	13 Apr 23

About Us

Agencies

Cyber Security

Digital Defence

Digital Readiness

Infocomm Media

Libraries

Personal Data

Public Comms

Careers

Job Vacancies

Scholarship

Translation Talent Development Scheme

Community-in-Translation Events Grant

Open Consultation

Archive

Pressroom

Stories

Live-stream

Establishing a news bureau

Work Passes

Press Accreditation

MCI Duty Desk

Entry requirements

Customs formalities

Government Directory

Media Associations

Regulation of the media sector

General information on taxes

Popular Keywords :

Suggestions

Quick Results

Pressroom

Committee of Supply 2023

Empowering Singaporeans to Thrive in Our Digital Future

Committee of Supply 2022

Building a Vibrant and Secure Digital Future Together

More than words: A translator's job

Translation is more than just finding the right words in one language and rendering it to another; it also needs to carry the ideas behind them.

Meet the Storyteller

Multi award-winning TV scriptwriter Ang Eng Tee shares how he creates drama serials that grip the audience’s hearts and imaginations, and talks about the mega remake of one of his classic Channel 8 dramas.

Tech for All: Meet the IT experts helping the elderly

These tech-savvy volunteers from Hewlett Packard Enterprise and HP Inc. are teaching seniors how to use e-payments. Find out what motivated them to step up as digital advocates for the elderly.

Never too young to give back

Three youth volunteers from Youth Corp Singapore share what motivates them to help seniors be digitally-ready.

Parliament Sitting on 9 May 2022

QUESTION FOR WRITTEN ANSWER

Our Agencies

Cyber Security Agency of Singapore

Infocomm Media Development Authority

National Library Board

Personal Data Protection Commission

you may want to check out

Speech by SMS Tan Kiat How at the Overcoming the Financial Sector AIDA Talent Shortage Roadmap for 2023 and Beyond event on 22 May 2023)

Speech by Mrs Josephine Teo Minister for Communications and Information at the launch of Stewardship of the Singapore Media Staying on Course on 16 May 2023

MCI Response to PQ on Steps to Protect Consumers and Businesses from Losses due to Disruption of Digital Services by Service Providers

MCI Response to PQ on Ensuring Development and Maintenance of Ethical Artificial Intelligence Standards

MCI Response to PQ on Regulatory Framework for Artificial Intelligence Governance in Singapore

Transcript of Welcome Remarks by Minister Josephine Teo at SingPost Buka Puasa

Addendum to the Presidents Address

Transcript of Comments Made by Minister Josephine Teo at Panel Session on Cyber Strategy and Digital Governance Protecting Sovereignty and Building Resilience of The Sydney Dialogue

Transcript of Opening Remarks by SMS Tan Kiat How at the public engagement on Launch at Punggol Regional Library

Speech by Minister Josephine Teo at the launch of the 2023 Edition of Dell MentorConnect Programme on 31 March 2023

MCI Response to PQ on Reports of Protection from Online Falsehoods and Manipulation Act Offences Related to COVID-19

MCI Response to PQ on Guidelines on Use of Vernacular Languages for Wayfinding Signs and Public Address Systems in Healthcare Institutions and MRT Stations

MCI Response to PQ on Local Workforce Ability to Meet Current Demand for Artificial Intelligence Skills

Poll by MCI finds 7 in 10 Singapore Residents Positive about their Overall Quality of Life Post-Pandemic

MCI Response to PQ on Training for Service Staff at Telecommunications Companies to Spot Possible Scams Targeted at Customers from Vulnerable Groups