Redefining Cybersecurity in the Age of Disruption

Like other regions around the world, countries in Southeast Asia have witnessed an alarming surge in cyberattacks in recent years. With increasingly sophisticated methods, threat actors are successfully breaching cyber defences to compromise a growing number of business operations.  

According to IDC, a staggering 59.6% of enterprises in the Asia-Pacific region experienced ransomware attacks in 2023. Separately, the Cyber Security Health Report 2024 by the Cyber Security Agency of Singapore (CSA) noted that 99% of organisations that reported a cybersecurity incident experienced business impact – whether business disruption, data loss, or reputational damage. 

The growing number of cybersecurity incidents is challenging how we think about security and trust, says Sam Liew, Chief Executive of Government Strategic Business Group (Gov+) at NCS. In his GovWare keynote last October, Liew highlighted the importance of both trust and resilience. Embedded these elements into cybersecurity, he noted, can offer a strategic advantage.
 

Resilience is No Longer Optional

Resilience is no longer a buzzword – it is inextricably linked to public trust and the smooth functioning of societies. He said: “In recent years, we’ve seen other disruptions, whether system failures, natural disasters, or cyberattacks, all affecting our daily lives. These incidents underscore the importance of building resilient infrastructure. Major disruptions that result in downtime or compromised services severely diminish public trust.”

Alongside the accelerating digital adoption, Liew also pointed out the risks posed by emerging technologies: “Technological disruptions pose significant risks to governments, companies, and individuals. Technology is at the forefront of driving progress and transformation, driven by the increasing adoption of cloud, AI, quantum computing, and other digital tools.” 

His point proved timely. In January 2025, the release of the DeepSeek R1 “reasoning” model stunned the global AI community. Faced with hardware limitations, the DeepSeek team developed novel ways to optimise training on slower GPUs, enabling new techniques to train AI models more economically and challenging assumptions about the resource needs of advanced AI. 

While it is not directly related to cybersecurity, the development illustrates how innovations can arise unexpectedly and from unlikely sources. It prompts a broader question: are we prepared for cybersecurity black swans, especially those sparked by disruptive technological breakthroughs from malicious actors?
 

Governments Strengthening Cybersecurity 

Recognising the growing scale and complexity of cyber threats, governments around the world – including Southeast Asia – are taking decisive steps to strengthen their cybersecurity posture and build long-term resilience. 

For example, the Singapore government is prioritising enhancements to its digital infrastructure. Liew noted that more than 60% of the government’s projected ICT procurement for 2024, amounting to SG$2.1 billion, is allocated to digital infrastructure, up significantly from SG$1.3 billion the year before. Singapore is also studying the introduction of a Digital Infrastructure Act (DIA) to enhance the resilience and security of its digital infrastructure and services. 

Elsewhere, industry benchmarks and standards are now integrating resilience. Liew pointed to the Digital Operational Resilience Act (DORA) in the European Union, established in January 2023. “This act aims at strengthening IT security of financial entities such as banks, insurance companies and investment firms, making sure that the financial sector in Europe can stay resilient in the event of a severe operational disruption,” he explained. 
 

Building a Security-first Culture 

While government policies and national frameworks play a crucial role, true resilience begins from within. Liew shared some trends and techniques in the industry that organisations can adopt to build resilient and trustworthy systems, most notably, implementing zero trust architecture and fostering a security-first culture. 

“Firstly, adopting a zero-trust architecture is key. A zero-trust architecture follows the rule, never trust, always verify a security strategy that asserts that no entity, including user application, services or device should be trusted by default,” he said. 

Liew highlighted how Singapore’s GovTech has developed a Government Zero Trust Architecture (GovZTA), framework based on zero trust principles and designed to improve user experience, accelerate implementation, and strengthen cyber resilience. 

Equally important is building a security-first culture – one that embeds cybersecurity as a core value across every level of an organisation. With rising interconnectivity across ecosystems, businesses face increasing risks from third-party vendors and suppliers. Robust vendor risk management and supply chain security are now essential. 

Organisations should also go beyond traditional continuity planning by cloning critical systems to secure environments or alternative sites, enabling rapid data and operational recovery. Finally, investment in employee training, clear communication, and psychological resilience will help teams respond calmly and effectively during crises. 
 

Looking Ahead with Automation, AI 

Looking forward, organisations will benefit from leveraging automation and AI, says Liew. Automation can handle tasks like vulnerability scanning, patch management, and incident responses, while AI tools can enhance zero trust by analysing networks and user behaviour to detect anomalies and vulnerabilities. 

“As threats become more frequent and complex, technologies like automation and AI-driven solutions can improve threat detection, speed up response, and ease the burden on security teams,” said Liew. That said, he cautioned that technology could cut both ways; the power of AI belies its underlying complexity, which makes them attractive targets for cyber-attacks. 

Ultimately, organisations must embrace innovation and adaptability to stay ahead of evolving threats, safeguard trust, and ensure resilience in an increasingly unpredictable digital world.