Breaking Down Silos to Tackle Cyber Threats

The Singapore Government is setting up a new agency to monitor and counter threats to cyber security. See news reports here and here. Based on these reports, the Cyber Security Agency or CSA will bring together a few existing entities from different parts of the public sector. It will assimilate the Cyber-Watch Centre and the Threat Analysis Centre from the Infocomm Development Authority (iDA). It will also assimilate the Singapore Infocomm Technology Security Authority and the Singapore Computer Emergency Response Team from the Ministry of Home Affairs. It looks like the Monitoring and Operations Command Centre (MOCC) will remain with iDA.

One can only imagine the extent of overlap in the activities of the different entities, so the establishment of CSA is an important first step to harmonising activities and to arrive at a coherent appreciation of cyber threats to our country. What’s not so clear from the reports is whether the staff of these different entities will be housed together, which is important for conversations to happen and weak signals to be pick up and investigated. This is not to say that knowledge sharing cannot happen if the staff are housed in different office locations – it will just be more challenging.

From an IM perspective, it will be interesting to know what kind of data ought to be shared between the centres/departments and iDA’s MOCC, and whether efforts will need to be channeled towards harmonising the data collected by the different entities. It will also be interesting to know what kind of technologies they will use to make sense of what I can only imagine to be a prodigious amount of data.

4 Comments so far

Patrick Lambe

The Department of Homeland Security had similar challenges when it was first set up - and eventually had to build a taxonomy to enable the information and knowledge flows between the disparate agencies. I would think they should be interested in the IKO Conference?

Posted on January 28, 2015 at 07:15 PM | Comment permalink

Edgar

Yes, clearly a case of knowledge organisation before exploitation. We can sound out David Koh to see what he thinks.

Posted on January 28, 2015 at 09:49 PM | Comment permalink

Sounds like an interesting conference, though too far away for me (in USA).  On the data sharing front you might find it more useful to look into how data is shared, rather than the explosive (and unproven) market of how it is analyzed that goes by the “big data” moniker.  There is an emerging standard called “NIEM” (if I’m spelling it right) here in USA that is starting to be used.  One of the principal sponsors was Michael Daconta.  Google will quickly get yoy the relevant details.

Posted on February 08, 2015 at 11:21 PM | Comment permalink

Patrick Lambe

Thanks for this Tony, will check it out!

Posted on February 10, 2015 at 02:48 PM | Comment permalink

Page 1 of 1 pages

Commenting is not available in this weblog entry.

Comment Guidelines: Basic XHTML is allowed (<strong>, <em>, <a>) Line breaks and paragraphs are automatically generated. URLs are automatically converted into links.