On March 2, Senior Minister of State for Digital Development and Information Tan Kiat How outlined plans to bolster Singapore's cybersecurity strategy, focusing on strengthening Singapore’s cybersecurity resiliency (e.g., standards, post-quantum cryptography), operations of critical information infrastructure (CII) owners, and overall cybersecurity workforce capacity. To ensure greater residential cybersecurity, Singapore will also raise the minimum cybersecurity labeling requirements for routers to CLS Level 2 by the end of 2027.
Singapore will equip CII owners with proprietary threat-detection tools and selectively share classified intelligence with CIIOs to enable effective responses to threats. The tools, developed by Centre for Strategic Infocomm Technologies (CSIT), will complement commercial threat detection systems and be deployed in selected CII sectors, with a progressive rollout to follow. Singapore's Cybersecurity Agency (CSA) will also raise cybersecurity requirements for CIIOs, CII auditors, and licensed cybersecurity service providers. CSA will mandate a Level 5 Cyber Trust Mark (CTM) Certification for CII auditors by the end of 2026 and for CIIOs by the end of 2027, with licensed cybersecurity services required to obtain a Level 3 certification. CSA and related agencies are expected to explore requiring higher cybersecurity labeling requirements for IP cameras, updating sector-specific cybersecurity regulations (e.g., telecommunications operators), and more stringent data protection and cybersecurity obligations for organizations handling sensitive data.
