Singapore’s updated Cybersecurity Act ensures heightened security in the digital age

The bill amending Cybersecurity Act was passed on 7 May.

From tech advancements to supply chains, the recent amendments to the Cybersecurity Act would help Singapore navigate the evolving landscape of cybersecurity, according to Norton Rose Fulbright. 

The law firm said in a recent note that owners of critical information infrastructure (CII) and providers of essential services (PES) are among the beneficiaries of the Cybersecurity (Amendment) Bill which was passed on 7 May.

It said the different regulatory approach to CII will allow said CII owners and PES to take advantage of advances in virtual and cloud computing, improving the delivery of essential services in the city-state.

The scope of the law has been expanded to include the regulatory oversight of entities of temporary cybersecurity concern, special cybersecurity interest, as well as providers of major foundational digital infrastructure services.

Cyber rules were also raised to a higher standard and the Cyber Security Agency of Singapore granted greater administrative power to ensure entities abide by the law. A stricter penalty regime was also put in place with the CSA now allowed to bring a civil action in court for civil penalties instead of criminal enforcement.

Further, Norton Rose Fulbright sees the expanded regulatory oversight as increasing supply chain scrutiny to better detect cybersecurity risks. Incident reporting has likewise been enhanced and extended.

“The objective of the CS Bill is to update the CS Act to keep pace with the evolving risks as well as reflect the increasing importance of ensuring the security of digital infrastructure and services powering Singapore’s digital economy, beyond just CIIs,” it said.

READ MORE: New bill passed to strengthen SG's digital defenses