Cyber-security service providers, which verify if businesses are vulnerable to hacking and monitor information technology systems for suspicious activities, will soon have to be licensed.
This aims to give greater assurance of safety to customers and raise the quality of the providers, said the Cyber Security Agency of Singapore (CSA) on Monday. The providers, which can be companies or individuals, will be licensed under a new framework expected to kick in by early next year. CSA has launched a public consultation on the licensing conditions and legislation.
Service providers will be given six months from the start of the framework to apply for a licence. One of the services to be licensed is “penetration testing”, which checks if an organisation can identify and respond to simulated cyber-security attacks. The other licensable service entails monitoring activities in computer systems to identify threats.