Endorsing Business Excellence
Endorse your organisation's
cybersecurity posture through
Cyber Essentials & Trust marks
Whether you are a small organisation embarking on your digital journey or a large multi-national corporation with digitalised business functions, cyber risks are getting more sophisticated, and all organisations are at risk. The cybersecurity certification scheme for organisations is developed by CSA to recognise organisations with good cybersecurity practices. The Cyber Essentials mark recognises organisations that have put in place cyber hygiene measures, while the Cyber Trust mark is a mark of distinction to recognise organisations with comprehensive cybersecurity measures and practices. The marks serve as visible indicators to demonstrate that organisations have put in place good cybersecurity practices to protect their operations and customers against cyber-attacks.
The SG Cyber Safe Programme helps Singapore organisations better protect themselves in the digital domain and enhance their cybersecurity
Where is your organisation in your cybersecurity journey?
About Cyber Essentials Mark
The Cyber Essentials mark is a cybersecurity certification for organisations that are embarking on their cybersecurity journey. It serves to recognise that the organisation has put in place good cyber hygiene practices to protect their operations and their customers against common cyber attacks.
The Cyber Essentials mark is targeted at organisations such as Small and Medium Enterprises (SME), where some smaller enterprises have limited IT and/or cybersecurity expertise and resources to dedicate towards protecting IT assets and personnel. ​
About Cyber Trust Mark
The Cyber Trust mark is a cybersecurity certification for organisations with more extensive digitalised business operations. It serves as a mark of distinction for the organisation to prove that they have put in place good cybersecurity practices and measures that are commensurate with their cybersecurity risk profile.
The Cyber Trust mark is targeted at larger or more digitalised organisations that have gone beyond cyber hygiene. These organisations may have higher risk levels and would correspondingly invest in expertise and resources to manage and protect their Information Technology (IT) infrastructure.
About Cyber Essentials Mark
for HIMS Vendor
Cyber Essentials for HIMS vendors will replace Cyber Essentials for CMS vendors. These will need to be met by Health Information Management System (HIMS) vendors, e.g. Clinic Management Systems (CMS) vendors.
​
This is a sub-scheme of Cyber Essentials (2025), co-developed by MOH and CSA and is applicable to Health Information Management (HIMS) vendors under the Ministry of Health HIA-compliant HIMS (HCH) Certification framework
​
​
About Cyber Essentials Mark
for ICT Vendor
Cyber Essentials for ICT Vendors is a sub-scheme of Cyber Essentials mark, and is applicable to Information and Communication Technology (ICT) vendors, who have particular roles, exposures, or responsibilities in supplying ICT systems, network infrastructure, cloud services, software and being part of the IT supply chains.
​
The extension of the Cyber Essentials mark allows the ICT Vendors to meet a recognized cybersecurity baseline and demonstrate trustworthiness / credibility to clients, partners, and regulators. This extension of Cyber Essentials mark is referred to as “Cyber Essentials for ICT Vendors”.
About Cyber Essentials Mark
for HIA
Cyber Essentials for Health Information Act (HIA) Entities. With increasing digitalisation, cyber-attacks and data breaches have become key risks for organisations and enterprises. In healthcare, such risks are heightened given that security breaches related to health information can potentially impact patient safety and care quality, beyond patient privacy and confidentiality.
​
To govern the safe and secure collection, access, use and sharing of health information to enhance quality and continuity of care for patients, the Ministry of Health (MOH) has introduced the Health Information Act (HIA).
Certification Fee for Cyber Essentials & Trust marks
a) Interested enterprises may apply for CSA’s Funding Supports to defray part of the certification fee.
​
b) Enterprises may leverage on Cybersecurity Health Plan delivered by CISO as-a-Service (CiSOaas) Consultants appointed by CSA to improve its cyber resilience through cyber health “checkups and a tailored cybersecurity health plan to meet the requirements of Cyber Essentials mark.
​
Find out more at - https://www.csa.gov.sg/our-programmes/support-for-enterprises/sg-cyber-safe-programme/cybersecurity-certification-scheme-for-organisation/cybersecurity-health-plan
c) Eligible organisations may apply for Standard Adoption Grant under Enterprise Development Grant Scheme to seek grant support for Cyber Trust mark certification fee. The application details can be found on Enterprise Singapore website.
​
Find out more at - https://www.enterprisesg.gov.sg/financial-support/enterprise-development-grant
