Technology application urged for building a smart nation

Friday, Oct 09, 2015 12:40

The 24th GovernmentWare conference and exhibition stresses the importance of applying technology to build a smart and secure nation.  — VNS Photo Vu Hoa

SINGAPORE (Biz Hub) — Promoting application of technology to enable better living, more business opportunities and stronger communities requires better cyber security, a government conference was told in Singapore yesterday.

Speaking at the three-day 24th GovernmentWare (GovWare) conference titled "Building a secure smart nation," a niche market event focussed on the Asia Pacific region, David Koh, CEO of Singapore's new Cyber Security Agency (CSA) said South East Asian countries like Singapore could only achieve the full potential of technology by securing its data and networks.

The concept of a smart nation was introduced by Prime Minister Lee Hsien Loong last year. Failure to protect a nation's key infrastructure such as roads, telecommunications, hospitals, schools and electricity also has potential to inflict physical damage, injury or death.

"Rather than being a cost and liability, cybersecurity is an enabler for achieving the full potential that technology promises. Well secured cyber systems and networks can help improve the way we do business, govern our countries, and live our lives," Koh said.

"This will require us to put on a security-by-design mind-set and build cybersecurity features into all our systems and processes even as they are being designed," he said.

"We cannot hope to implement cybersecurity after the fact, as an afterthought, or as a bolt-on. It will not be effective, and will likely cost more," Koh added.

He highlighted how key cybersecurity developments today like increasingly sophisticated attacks, attacks on industrialised control systems (SCADA) and more dependence upon e-government services, have played a major role in the Singapore government's decision to set up the CSA in April this year. This agency is under the purview of the Singapore prime minister's office.

Ultimately, Singapore has realised that global co-operation is the key to build a smart, secure nation.

"No nation can hope to launch a cyber defence without close working relationships with its ASEAN neighbours, and other like-minded international partners across the globe," he added.

Singapore's Minister of Communications and Information, Yaacob Ibrahim agreed, saying that they need a national cybersecurity strategy to ensure that sufficient resources are allocated to build a robust defence infrastructure and an ecosystem that encompasses the right capabilities.

Yaacob said the government was reviewing its budget to ensure sufficient resources are set aside to support a robust defence system.

He noted that with cyberattacks increasingly sophisticated and pervasive, Singapore's national cybersecurity strategy was necessary to prioritise its efforts and raise public awareness.

Singapore intended to spend up to 10 per cent of its IT budget on cyber security and following Israel and South Korea which stipulated 8 and 10 per cent respectively on cyber security.

He said the private sector should follow suit, highlighting the need for a substantial cyber security budget as one of the nation's three thrust areas to shore up its defence.

In addition, they saw the importance of developing their own cyber security capability and plan to do so in collaboration with various sectors. Another priority also is to grow a vibrant ecosystem that would strengthen Singapore's capabilities and bring good jobs to the island nation.

However, he stated that "Cyber security is not just about threats to mitigate. It is a high-value industry. And to capitalise on it, the government will work to create certifications, as well as standards to support a broadening pool of cyber security talent."

Industry partnerships

CSA also revealed it had signed three MoUs with Check Point, FireEye, and Singtel, aimed at beefing up the country's cybersecurity capabilities.

Its collaboration with Singtel will look at developing manpower resources through training and certification as well as research and development related to cybersecurity products. The agreement with Check Point will also focus on growing local capabilities to deliver "advanced" cybersecurity offerings to Singapore and will include technical training.

FireEye will be working with the CSA on information-sharing related to cybercrimes and cybersecurity trends, with both parties working to establish the necessary measures for incident response.

The CSA alongside ICT regulator, Infocomm Development Authority (IDA) would be introducing the Cyber Security Associates and Technologists Programme (CSAT) to train and "up-skill" ICT professionals.

In addition, the Singapore government will create common certification and standards to support the local ecosystem, he said.

CSA also signed a Memorandum of Intent (MoI) with CREST International (Council for Registered Ethical Security Testers) and the Association of Information Security Professionals (AISP) to introduce CREST certification for cybersecurity penetration testers in Singapore.

"The certifications will serve as a competency baseline for practicing professionals and service providers," CSA said, adding that the MoI would see the organisations jointly set up a CREST Singapore Chapter next year. — VNS

Comments (0)

Statistic