Cybersecurity Capabilities

Safeguarding the government’s ICT & smart systems

Singapore's digital landscape faces escalating threats, making robust cybersecurity paramount. The severity of this challenge is underscored by recent statistics: in 2023, 84% of local organisations reported cyberattacks, with 53% resorting to ransom payments. In response, GovTech delivers critical cyber security solutions. We are dedicated to cyber defence in Singapore, safeguarding government Information and Communications Technology & Smart Systems through proactive threat detection and rapid response, fortifying digital resilience.

What we do

Our mission is to secure government Info-Communications Technology and Smart Systems, and to respond swiftly to any cyberattack. We achieve this through the timely detection of cyber threats, developing cyber capabilities, and enhancing the public sector’s cybersecurity posture.

1. We ensure timely detection and mitigation of cyber threats by monitoring, detecting and responding to cyber incidents across the Whole-of-Government.

2. We develop cyber capabilities by designing and implementing secure architectures, conducting security testing on our systems and networks, and developing advanced cybersecurity products to protect our digital assets.

3. We enhance and elevate the public sector’s cybersecurity posture through governance policies and through various outreach programmes and exercises.

Our cybersecurity & cyber defence initiatives

We deliver our mission through a range of activities and functions:

Strengthening the government’s defences in cyberspace

The Government Cybersecurity Operations Centre (GCSOC), with a comprehensive suite of cybersecurity capabilities to monitor, detect and respond to incidents, is our key capability to defend against threats to government networks and systems.

Enhancing the government’s cybersecurity capabilities

We ensure the secure design of government systems and apps through the government trust-based architecture framework and conduct security testing through red-teaming, penetration testing, and the Crowdsourced Vulnerability Disclosure Programme to quickly identify and remediate vulnerabilities.

Elevating the cybersecurity posture of our workforce

We elevate public service officers’ cyber competencies through cybersecurity training, quizzes, and phishing exercises. We also provide upskilling courses to our public service officers and cybersecurity specialists through GovTech’s Digital Academy.

Strengthening security governance in government AI systems

We establish comprehensive security governance frameworks for government systems, ensuring they are designed with security in mind. Through collaborative oversight, we offer practical guidance to empower stakeholders in maintaining best practices and effective threat management.

Cybersecurity best practices for Large Language Models (LLMs)

GCSOC plays a key role in detecting and mitigating cyber threats against the Whole-of-Government.

Who we work with

We work with the wider cybersecurity community and industry partners.

Collaborating with partners

We collaborate with industry partners and institutes of higher learning (IHLs) to leverage their expertise and best-of-breed solutions, which can effectively meet the needs of Whole-of-Government. This includes joint development of security protocols and access to specialised threat intelligence. We also participate in industry-led cybersecurity forums for knowledge exchange.

Engaging with the white hat community

We engage the wider white hat community through the Crowdsourced Vulnerability Disclosure Programme to secure our systems and encourage responsible reporting of suspected vulnerabilities found within government systems. This programme adheres to ISO 29147 standards for vulnerability disclosure. Reported vulnerabilities are assessed and remediated according to severity, ensuring system integrity.

Cultivating talents in cybersecurity

We conduct regular Capture the Flag competitions to attract and challenge cybersecurity enthusiasts on various aspects of cybersecurity, to hone their skills, and learn from one another. These competitions simulate real-world cyber scenarios and are aligned with industry certifications. Participants gain practical experience in incident response and forensic analysis.

Securing Singapore's digital future

Cybersecurity is critical in Singapore due to its extensive digital infrastructure, which is vital for essential services and the economy. In 2023, key trends emerged: supply chain attacks, heightened hacktivism, and risks of AI facilitating sophisticated scams in Singapore. These are compounded by a cybersecurity talent shortage and the need for agile defences. 

To mitigate impacts on public services, GovTech's Government Security Operations Centre (GSOC) provides 24/7 monitoring. Building upon this, robust security protocols and proactive intelligence sharing significantly enhance government system resilience. Furthermore, by deploying automation and AI-driven solutions, GovTech strengthens defences, addresses the cybersecurity talent gap, and reinforces trust in digital services. These combined efforts demonstrate a tangible impact in safeguarding Singapore's digital future.

Join our team

Passionate about cybersecurity and public service? Join us in securing Singapore's digital lifeline and defending critical systems. Work on cutting-edge challenges and shape the nation's cyber future. At GovTech, you'll tackle real-world threats, develop advanced skills, and drive innovation, all while growing your career. We offer diverse opportunities to impact lives and be part of a mission that matters. Join our team and make a difference.

Explore GovTech careers as a Cybersecurity Engineer, Cybersecurity Policy Developer, Red Team Engineer, and more.