CSA and Huawei Cloud join hands to simplify cybersecurity certification for Singapore enterprises

The rapid advancements in technology have changed the way organisations operate - with artificial intelligence increasing operational efficiency and cloud services easing the storing of essential data. 

But as cloud migration becomes the norm and new technologies emerge, so do cyber threats. Over eight in 10 organisations in Singapore faced cybersecurity incidents in a year, reported the Cyber Security Agency of Singapore (CSA) earlier this year. 

In the same report, lack of knowledge was cited as the top challenge faced by organisations in assessing cybersecurity needs and adopting protective measures against cybercrimes.  

To bridge this gap and simplify cybersecurity requirements for enterprises, CSA and Huawei Cloud jointly released the Security Companion Guide for CSA Cyber Trust mark certification on October 16, at GovWare 2024, part of the annual Singapore International Cyber Week held in Singapore last week.

The guide, based on the cloud security responsibility-sharing model, provides organisations with advice on implementing cybersecurity practices to protect their businesses, data, and customers from cyber threats. 

To subscribe to the GovInsider bulletin click here.

“We are democratising cybersecurity, ensuring that businesses can not only meet regulatory standards but also forge resilient operations that stand strong against evolving cyber threats,” said Huawei International’s CEO, Maxi Wang. 

Recognising cyber safety  

The Cyber Trust mark certification, launched by CSA in 2022, distinguishes organisations that demonstrate cybersecurity readiness and active application of measures to match their cybersecurity risk profile.  

It recognises five levels of cybersecurity preparedness: supporter, practitioner, promoter, performer, and advocate. The certification is part of CSA’s Cyber Safe Certification Programme. 

To help enterprises meet compliance requirements, the security companion guide maps Huawei Cloud services to the Cyber Trust mark control domains. This mapping acts as a reference point for organisations struggling to implement the measures they need to obtain the Cyber Trust mark certification. 

 “Cybersecurity is a collective responsibility, requiring collaboration between governments and industries,” said Wang. He added that to achieve this, public-private partnerships are key to improving cybersecurity resilience.   

As an advocate for collective responsibility for cybersecurity in Singapore, Huawei Cloud developed the CSA Cyber Trust mark certification security solution to promote the Cyber Trust mark certification and help its customers “adopt the right cybersecurity posture to secure their digital assets,” said Huawei International’s Chief Security and Privacy Officer, Dennis Chan. 

Huawei received the Cyber Trust mark certification last year for its cybersecurity hygiene practices. 

Promoting cybersecurity readiness  

CSA and Huawei Cloud have collaborated since 2021 on the SG Cyber Safe Partnership Programme to run programmes and promote adoption of cyber-secure measures for enterprises. 

To subscribe to the GovInsider bulletin click here.

As Advocate Partner of the programme, Huawei Cloud continues to offer solutions and cloud service resources in alignment with the Cyber Trust mark standards to build a digitally resilient society. 

The commitment towards cyber safety extends beyond Singapore’s borders. The Security Companion guide also supports enterprises across Southeast Asia that look to bolster their security efforts. 

Organisations in Southeast Asia that seek to meet the Cyber Trust mark standards may perform a risk-based approach to assess cybersecurity threats, adopt protective measures, and maintain continuous cybersecurity readiness across 22 topics.  

The Cyber Trust mark certification aligns with ISO27001 standards—a standard for information security management systems that, if organisations meet, prove the systems to manage data risks are conforming to the best practices and principles of transparency and cyber trust.  

Huawei passed the certification, ensuring that its research and development (R&D) and production processes are trustworthy.   

“Cloud service providers like Huawei Cloud hold the keys to a secure digital landscape by prioritising responsible cybersecurity practices, not only to protect their infrastructure but also to empower their tenants to thrive safely in the cloud era,” noted Chan.