Singapore: Implemented Cybersecurity Act 2018 including provisions governing Cybersecurity Service Providers (CSP)

Implemented Cybersecurity Act 2018 including provisions governing Cybersecurity Service Providers (CSP)

On 11 April 2022, part 5 and the second Schedule of the Cybersecurity Act were implemented, establishing a framework for the protection of critical information infrastructure (CII) against cybersecurity threats. Part 5 of the Act establishes the licensing framework for Cybersecurity Service Providers (CSP) in Singapore and makes it illegal to offer or advertise licensable cybersecurity services without a license. Applications for licenses can be denied if the applicant is unfit or poses a security risk. The licensing officer can impose conditions on licenses and take disciplinary actions, including revoking or suspending licenses.

Original source

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

cross-cutting

Implementation Level

national

Government Branch

executive

Government Body

central government

Complete timeline of this policy change

Hide details

2018-01-08

under deliberation

The Singapore Cyber Security Act is introduced in the Singapore Parliament. The Act introduces a fr…

2018-02-05

adopted

The Singapore Cyber Security Act is adopted by the Singapore Parliament and will be implemented whe…

2018-03-02

adopted

On 2 March 2018, the Cybersecurity Act was signed by the President of Singapore, establishing a fra…

2018-08-31

in force

On 31 August 2018, parts 1 to 4, 6 and the First Schedule of the Cybersecurity Act were implemented…

2022-04-11

in force

On 11 April 2022, part 5 and the second Schedule of the Cybersecurity Act were implemented, establi…

Description

Implemented Cybersecurity Act 2018 including provisions governing Cybersecurity Service Providers (CSP)

Scope

Complete timeline of this policy change