Trusting Cyberspace? Plan for Accelerated Security Incident Response | Singapore International Cyber Week

Resolve Systems once again exhibited at Singapore International Cyber Week and GovWare, Singapore’s most established cybersecurity event with the theme “Forging a Trusted and Open Cyberspace”. The team was there to discuss what SICW calls Cyber Operations and Sense-Making or Incident Response, Investigations, Forensics, and Recovery.

“In the last few years, we have witnessed rapid digital transformation all over the world, but we have also seen the cybersecurity challenges that came along with it. Global conversations and greater cooperation among governments, industry and various stakeholders are now more critical than ever. We hope that the SICW will be a platform to further these conversations to bring about a strong, resilient and innovative cyberspace,” said Mr. David Koh, Chief Executive of Cyber Security Agency of Singapore.

Deputy Prime Minister Teo Chee Heng announced at the opening of SICW the creation of ASEAN-Singapore Cybersecurity Centre of Excellence (ASCCE). The primary focus is to boost Asean’s capabilities to tackle global cybersecurity incidents by training Computer Emergency Response Teams (CERTs). In addition to the ASCCE, to help identify the Government’s cyber blind spots and benchmark its defenses against skilled global hackers, a Government Bug Bounty Program will be launched at the end of this year.

“Cyberthreats are global threats. No country can tackle these emerging cyberthreats on its own.We need to work together to strengthen our collective resilience against such threats,” said Mr Teo, who is also the Coordinating Minister for National Security.

With the recent cybersecurity law, Singapore is also investing and speeding efforts to build up the Cyber Security Agency of Singapore (CSA), and has worked closely with critical information infrastructure owners to strengthen their cyber defenses.

Ready to learn more about Singapore’s Omnibus Law? Read the eBook!

The recent breach of SingHealth between 27 June to 4 July led to the compromise of 160,000 outpatient dispensed medicine records and 1.5 million patient’s records – including Prime Minister Lee Hsien Loong – which highlights the sophistication of cyber incidents and the links to ransomware, potential terrorism, and the issues caused by slow security incident response. Efforts to secure the cyber defenses of 11 critical service sectors have been put in high gear following the SingHealth data breach. The CSA has asked the 11 critical sectors to review the necessity of connecting their systems to untrusted networks (like unsecured WiFi).

“If there is no business need to do so, then owners (of the 11 critical sectors) should remove such connections. While the Government will continue to review and upgrade its security measures to guard against new threats and strengthen its infrastructure, it is not possible to completely eliminate the risk of cyber-security attacks.”

It’s not possible to completely eliminate the risk of cybersecurity attacks, so security incident response becomes all the more critical. Manual, siloed response isn’t enough and that’s exactly what the APAC team discussed at GovWare. With all the investments and prioritization Singapore brings to cybersecurity, overlooking security incident response just won’t yield the results and leaves IT infrastructure – and Big Data – vulnerable.

451 Research’s Business Impact Brief outlines everything you need to know about a Security Incident Response Automation & Orchestration Platform. Read it Now.

As a large enterprise or service provider, Asean enterprises are looking for a solution to tackle security incidents related to your network, applications, end-user devices, cloud platforms, etc. of the 11 critical sectors and beyond. From application failures impacting users or customers to serious security breaches that can put your most critical data at risk, not responding quickly and efficiently to these incidents can lead to lost revenue, high cost of resolution, hefty penalties from lawsuits, and severe brand damage.

Exploring solutions like IT Process Automation or Knowledge Management for security incident response also fails to achieve desired results outlined in the Omnibus bill and critical for your business. ITPA or ad hoc, manual response is too simplistic and time consuming and do not take into account the complex nature of your organization and systems.

With the new cybersecurity omnibus legislation, Resolve Systems is here to support Singapore’s security operations teams with enterprise-wide automation and orchestration. Ready for the next steps to accelerated security incident response with automation and orchestration? Assess your readiness for a SOAR platform now by reviewing six simple questions.