Engineering Digital Government
The digital transformation of Singapore's public sector
Realising the Digital Government Blueprint
Through our Digital Government Blueprint, we aspire to create a government that is “Digital to the Core, and Serves with Heart.” This means that transacting with the government will be easy, seamless, and secure.
It also means that public officers will continually upskill and work collaboratively across agencies to drive digitalisation within the government and offer better services to citizens and businesses.
A shared stack for collective progress
In line with the Digital Government Blueprint, we need to enable a consistent service standard across the government comprising user-centric services that are secure.
Thus, a robust development stack that supports modern application development across the government has been adopted.
Cybersecurity efforts within the digital government
GovTech leads the efforts to develop the cybersecurity strategy for the government, secures the usage of government digital services for the public and protects the Government’s ICT systems and Smart systems (ICT & SS).
Our suite of cybersecurity capabilities range from blue-teaming capabilities that detect and respond against cyber threats, to red-teaming capabilities that uncover cyber vulnerabilities in Government’s ICT & SS.
Beyond developing cyber-defence capabilities, we also develop cybersecurity policies and guidelines for agencies, work with agencies to implement secure architectures, and provide cybersecurity technical guidance that help build a safer, more secure Smart Nation for our citizens and businesses.
Learn more about our cybersecurity efforts with these articles below.
Government IT Security Incident Response (GITSIR) Team
The Government IT Security Incident Response (GITSIR) team enables the Government to provide a swift response to cybersecurity incidents.
Here’s a quick look at what the team does:
-
Perform incident investigations, digital forensics, malware analysis, etc.
-
Act as the primary point of contact for all security incidents co-ordinate with relevant internal and external parties.
GITSIR proactively publishes alerts, advisories, and directives on security vulnerabilities and threats. GITSIR regularly keeps agencies up-to-date on cybersecurity best practices to address the latest and upcoming cyber threats.
However, incidents may still occur from time to time. Agency users or IT teams that detect unusual activities or suspected malware must report their observations to GITSIR. Each Agency has appointed its own team of Security Incident Response Managers and Officers (SIRMs/SIROs). Together with the Chief Information Security Officers (CISO) and GITSIR, they work together to take the necessary steps when faced with possible cybersecurity threats.
GITSIR uses the Incident Management process to identify the incident’s root cause and provide recommendations to agencies, who will then contain, recover and strengthen themselves against future attacks. GITSIR helps to triage each report to ascertain the severity of each case as well as coordinate with the parties involved, and advise affected agencies on appropriate actions. It also carries out forensic and malware analysis and helps the Government prevent future attacks.
You may view and download the GITSIR RFC 2350 Profile here.