Companies in 2022 faced an array of threat actors: sophisticated advanced persistent threats, ruthless cyber criminals; disgruntled insiders; a resurgence in hacktivism and more. Looking ahead, attackers will continue scouring unpatched systems...and will exploit where they can¹ according to a report by PwC.
Navigating the trenches of Cybersecurity sure is a labyrinth in itself, but not for Ms Tham Mei Leng, from the Government Technology Agency of Singapore (GovTech). Posted as the Ministry Chief Information Security Officer (MCISO) at the Ministry of Sustainability and the Environment (MSE), her role sees her providing cybersecurity leadership to the CISOs in the agencies within the MSE family – comprising PUB (the National Water Agency), the National Environment Agency (NEA) and the Singapore Food Agency (SFA) – in charting their development of cyber and data security goals, strategies and action plans.
Ms Tham sharing her CISO story in GovWare 22.
“The evolving landscape of IT, ICS, and data security provides a wide array of challenges and learning experiences, allowing me to expand my knowledge and skills in both breadth and depth. One of the main aspects of my role that motivates me is the continuous opportunity for personal and professional growth and the numerous cross-sharing events, facilitated by the Cyber Security Agency (CSA) and GovTech, across the Whole of Government (WoG).
These learning experiences offered valuable insights into cyber incidents and defensive measures across various sectors and gave her the confidence to handle the responsibilities that comes with her role. Her colleagues often seek out her advice on cyber hygiene practices, providing her with a sense of trust, purpose and accomplishment.
A targeted approach for learning for a fast-paced industry
To contribute more effectively to her organisation by embedding cyber security measures into her stakeholders’ digitalisation plans and to ensure a safe and secure environment for digital transformation, Ms Tham also took up the NUS-ISS’ Stackable Programmes and completed the NUS-ISS Graduate Certificate in Designing and Managing Products and Platforms programme.
“A good medicine need not always taste bitter,” said Ms Tham who emphasised that the user-centric approach to product design skills that she gained through the programme enabled her to design and implement cyber security strategies that cater to the specific risk requirements of her stakeholders while maintaining a strong focus on usability and effectiveness.
Viewing Cybersecurity holistically
Added Ms Tham, “the programme delivered by NUS-ISS highlighted the importance of articulating the cyber security strategy in a manner that supports organisational outcomes and objectives. By effectively communicating how cyber security initiatives align with the overall goals of the organisation, it promotes a stronger commitment from the stakeholders to adopt and implement cyber security measures. It taught me to not merely pursue cybersecurity in isolation, but apply them in areas to help the stakeholders achieve their key missions”.
She shared three clear benefits of the NUS-ISS Stackable Programme having been through the programme:
Recognise the value of targeted learning – NUS-ISS Stackable Programmes are designed to help you acquire specific skill sets and know-how tailored to our job roles. This targeted approach to learning can be particularly valuable in today's dynamic IT landscape.
Appreciate the flexibility – One of the key advantages of NUS-ISS’ Stackable Programme is the flexibility it offers in terms of scheduling and pacing. This makes it an ideal option for working professionals or those with other commitments, to balance the learning journey with your daily commitments.
Taught by Experienced Practitioners – The NUS-ISS Stackable Programme features lecturers who are experienced practitioners. Their real-world knowledge and insights ensure the curriculum is relevant and up to date. This sets the programme apart from others that may be more academically focused or lacked the practical perspectives of industry veterans.
To reap these benefits, Ms Tham shared that one must be prepared to accept new upskilling and cross-skilling opportunities. The rapidly changing world of technology and digitalisation requires continuous learning and adaptation and embracing an open mind set will enable one to make the most of the programme and its offerings.
Find out more about NUS-ISS Stackable Programmes here.
Discover NUS-ISS' suite of Cyber Security Executive Education Programmes, here.
______________________________________________________________________
¹ PwC (2022) web. Cyber Threats in 2022, A Year In Retrospect. https://www.pwc.com/gx/en/issues/cybersecurity/cyber-threat-intelligence/cyber-year-in-retrospect.html