Demonstrate your commitment to cybersecurity with implementation of cyber hygiene practices
Demonstrate your commitment to cybersecurity with implementation of cyber hygiene practices
Funding support available from CSA
Cyber-attacks continue to dominate headlines worldwide, exposing enterprises to significant risk and placing them under intense scrutiny with regulators, investors, and customers. Having systems and processes to secure your business is imperative to mitigate the risk of financial loss, loss of sensitive data, operational downtime and more.
The Cyber Essentials mark is a cybersecurity certification, developed by Cyber Security Agency of Singapore (CSA), for organisations that are embarking on their cybersecurity journey. It serves to recognise that the organisation has put in place good cyber hygiene practices to protect their operations and their customers against common cyber attacks.
The Cyber Essentials mark is targeted at organisations with limited IT and/or cybersecurity expertise and resources to dedicate towards protecting IT assets and personnel.
The Cyber Essentials mark is a self-declaration assessment with CSA guided foundational concepts of generally acceptable cybersecurity posture in Singapore. Enterprises can benefit from the framework by implementing the recommended cybersecurity practices in Assets, Secure/Protect, Update, Backup and Respond.
While strengthening the cybersecurity of an organisation is necessary, these cyber security practices must be up to the mark. The CSA cyber security essentials certification is a testament to your organisation’s commitment to secure IT operations. An organisation can gain the following benefits from achieving the certification:
The CSA Cyber Essentials mark serves as recognition that the organisation has established good cyber hygiene practices to safeguard its business operations and clients from common cyberattacks. The Cyber Essentials self-assessment option protects your company from the most frequent hacking attempts. Organisations should apply for the CSA Cyber Essentials scheme if they have limited IT and/or cybersecurity knowledge and funds to dedicate to safeguarding IT resources and employees.
A versatile cyber security essentials certification partner like TÜV SÜD can help you delve into the specifics of a cyber security strategy.
CSA Cyber Essentials mark's self-assessment consists of the following cybersecurity controls and measures:
TÜV SÜD’s experienced auditors possess the accreditation and expertise to conduct Cyber Essentials mark, and Cyber Trust mark audits across industries and locations. Our status as an independent certification body ensures that the TÜV SÜD certification mark is accepted worldwide, making it a powerful tool for distinguishing your company in the market. By being certified by TÜV SÜD, you can demonstrate your accountability to protecting your organisation and your customer’s cyber safety at hand.
TÜV SÜD PSB provides a one-stop solution to support enterprises on a full suite of cybersecurity services such as:
APPLICATION PROCESS
Here is application and certification process for enterprises interested in CSA Cyber Essentials mark
The CSA Cyber Essentials mark is valid for two years upon successful completing the Cyber Essentials certification.
Enterprises interested in CSA Cyber Essentials mark are required to submit relevant documents to TÜV SÜD PSB for verification and recommendation, based on the Cyber essentials requirements.
Companies should be familiar with the cyber essentials security controls and measures aligned with the Cyber Essentials mark’s requirements as per Q1. They are required to have relevant and quality documents to be submitted for the Cyber Essentials self-assessment to be reviewed.
Training is available for companies who are interested to learn more or to be certified for the Cyber Essentials mark. A discounted bundle deal is available for companies who are keen to train and certify with TÜV SÜD. Click here for more details.
The overall estimated timeline based on best scenario* for CSA Cyber Essentials mark is one month from the date of notice to the certification award.
*Best scenario is when enterprises have proactively and timely submitted all the relevant documents from the 1st submission date without requiring additional time.
Yes, funding support is available for companies and the subsidy amount is determined by the profile of the companies which is shown as follows:
Quantity of End-points |
Maximum Level of Funding Support from CSA To be deducted from the certification fees charged by certification bodies |
1 - 10 |
S$250 |
11 - 20 |
S$350 |
21 - 50 | S$450 |
51 - 100 | S$500 |
101 - 200 |
S$550 |
The following provisions safeguard the organisation from malicious software:
Since cyber attackers use social engineering techniques to target employees for their motives, employees serve as the organisation's first layer of protection. A weak link in the staff is usually the culprit in security breaches. Therefore, all employees within the organisation must be appropriately trained to recognise these strategies, counteract them, and disclose any suspected incidents through the cyber essentials scheme.
The following provisions prepare you to identify, address, and recover from cybersecurity incidents:
An end-point is a remote computing device that communicates back and forth with a network to which it is connected. Examples of end-points include:
The number of end points within your organisation is a cost parameter for this certification.
Site Selector
Global
Americas
Asia
Europe
Middle East and Africa