Modern

Cyber-resilience
The Transformative
Power of Collaborative
Security

With enterprises having experienced rapid digitalization

during the past decade, cybersecurity has evolved beyond
simply being an operational lever. Powered by
governments and enterprises alike, this booming growth
engine now fuels countless businesses, millions of jobs,
and an ever-expanding ecosystem of connected
applications.

A Frost & Sullivan White Paper frost.com

Commissioned by Microsoft
Contents
03 FOREWORD

04 YEAR IN REVIEW: EXAMINING THE ROLE OF CYBERSECURITY DURING

GLOBAL INSTABILITY
a. The rise of targeted attacks amid a reality in flux
b. Coming full circle: from cyber-insecurity, to resilience and recovery

06 THE CRUCIAL ROLE OF CYBERSECURITY IN STABILIZING THE MODERN

DIGITAL REVOLUTION
a. Learning from the past, preparing for the future: the evolving role of cybersecurity in
economic growth

09 THE TANGIBLE RETURN ON INVESTMENT (ROI) OF

CYBERSECURITY INVESTMENTS
a. Singapore e. The Philippines
b. South Korea f. Indonesia
c. Malaysia g. Vietnam
d. Thailand h. Brunei

30 BEYOND THE ENTERPRISE: THE BLUEPRINT FOR TOP-DOWN DIGITAL

SECURITY
a. Examining the broader impacts of global interconnectivity
b. Uniting global resources and perspectives: the impact of cybersecurity cooperation

32 ACCELERATING TECHNOLOGY GROWTH WITH STRATEGIC PARTNERSHIPS

a. Leveraging the digital horsepower of cybersecurity alliances
b. The societal impact of secure digital advancement: access, trust, and reliability

35 CONCLUSION: DESIGNING EFFECTIVE POLICY MILESTONES

a. Industry, government, and beyond: key learnings from global best practices
b. Mapping actionable building blocks toward a complete cybersecurity blueprint

36 ABOUT THE MICROSOFT ASIA-PACIFIC CYBERSECURITY EXECUTIVE COUNCIL

Modern Cyber-resilience Foreword 03

Foreword
The global cybersecurity threat landscape continues to evolve,
becoming more dangerous as the world becomes ever more
The global cybersecurity
connected. Frost & Sullivan estimates that, by 2030, there will be a
complex global network of 200 billion devices, with more than 20 threat landscape
connected devices per human, broadly expanding the platforms continues to evolve,
cybercriminals can leverage while continuing to be unbound by
geographical borders.
becoming more
dangerous as the world
In the past, we have relied on governments to protect their citizens becomes ever more
from foreign threats. However, digital technology has created a
world where governments cannot take effective action alone.
connected
Today’s cybersecurity threats require a unique level of
collaboration between the public and private sectors.
Governments and industry, including but not limited to technology
companies, need to work together to share information,
strengthen defenses, and respond to attacks.

As no single entity can fight cybercrime effectively, Microsoft decided to launch the first Asia-Pacific Public
Sector Cyber Security Executive Council, bringing together a coalition of policymakers from government and
state agencies and technology and industry leaders to build a strong communications channel for addressing
cyberthreats and sharing best practices across 8 participating countries. This comes on top of Microsoft’s
commitment of US$20 billion towards cybersecurity investments globally over the next 5 years.

We hope the insights we have gathered will be beneficial to you and your organization and that the
implementation of these best practices will further strengthen our global defenses against cybercrime.

Mary Jo Schrade
Assistant General Counsel, Regional Lead, Microsoft Digital Crimes Unit Asia
Microsoft
Modern Cyber-resilience Year in Review: Examining the Role of Cybersecurity 04
During Global Instability

Year in Review: Examining the Role of

Cybersecurity During Global Instability
The rise of targeted attacks amid a
reality in flux
2020 brought large-scale global upheaval, impacting societies, governments, businesses, and the technologies
that support them all. Moving to remote working practically overnight, organizations embraced new operational
infrastructures. Dynamic and agile advancements replaced legacy technologies and supply chains, and service
delivery processes went through a massive overhaul. Data multiplied exponentially, giving birth to a much
broader attack surface because of these merging forces. Cyberattacks grew smarter, scaling in both
sophistication and speed to penetrate the unsecured defenses of increasingly digital economies:

Remote workers have become primary targets for cybercriminals because of the likelihood of them using
their own devices and personal Wi-Fi connections without the protections that come with enterprise cloud
networks.

The rapid adoption of new technologies and a dramatic increase in active internet users opened the door
to smarter cyberattackers, drawn to the significantly widened attack surface.

Phishing attacks grew rapidly during 2020, shaped by advanced attack mechanisms such as the ability to
impersonate popular brands, botnets designed to scam victims for financial gain, identity theft and
malware distribution.

While cloud and digital technologies have seen a steady

uptick in adoption during the past decade, the past year
The past year forced even
forced even previously digital-immature organizations
and customers to move online. In the pre-pandemic
previously digital-immature
world, corporate security teams were already responsible organizations and customers
for securing the entire breadth of their infrastructure to move online
over internal and virtual networks. Today, the explosion
of data and devices at the network edge has created an
entirely new sense of urgency in extending the
perimeters of cybersecurity well beyond traditional
corporate firewalls.
Modern Cyber-resilience Year in Review: Examining the Role of Cybersecurity 05
During Global Instability

Coming full circle: from cyber-insecurity,

to resilience and recovery
The traditional view of cybersecurity was through the lens of business enablement rather than that of a
continuous, business-critical objective. With the global pandemic forcing companies to embrace rapid change
almost overnight, cybersecurity was often relegated to the sidelines to maintain business continuity and
availability during challenging times. However, a truly ironclad security posture relies on enduring
cyber-resilience and not just static cybersecurity.

What does this mean? Security leaders must design roadmaps that anticipate blind spots, withstand
unexpected disruptions, and have intentional plans designed to empower recovery. The most effective
cyber-resiliency blueprints are dynamic, allowing room for continuous improvement and iterative growth as the
attack landscape evolves. The 3 core pillars to support cyber-resiliency revolve around:

Automating Translating analytics from a wide variety of threats into

actionable, adaptive processes that can streamline risk
threat assessment and response while providing realistic
intelligence benchmarks for testing and evaluation.

Broadening the Cybersecurity response has traditionally revolved around

immediate tactical response plans: blocking attack traffic,
definitions of removing malware, reinstating compromised user
cybersecurity accounts, and maintaining security service level
agreements. However, the modern threat landscape brings
response with it a much broader ecosystem of attacks that could
damage business availability, from the vulnerabilities
associated with a remote workforce to ransomware
attacks. This calls for a broader definition of cybersecurity
response and dynamic recognition of crises that each
require their own management and recovery plans.

Leveraging Mom-and-pop retailers and historically digital-averse

industries such as manufacturing have now joined an
collaborative increasing list of industries dependent on digital
frameworks technology. With this hyper-convergence of physical and
digital worlds, the private sector needs consistent
between the public cybersecurity standards and resources from national and
and private sectors global governing bodies.
Modern Cyber-resilience The Crucial Role of Cybersecurity in Stabilizing the 06
Modern Digital Revolution

The Crucial Role of Cybersecurity

in Stabilizing the Modern Digital
Revolution

Enterprise transformation is continually being shaped by evolving

customer demands. Users expect a connected digital experience
Platforms such as
where they can move safely and seamlessly between web and
mobile applications. Businesses, in turn, are reimagining their Microsoft Teams have
technology stacks by migrating their data, applications, and reimagined corporate
digital assets to cloud infrastructures to deliver agile and scalable
service. Platforms such as Microsoft Teams have reimagined
communications
corporate communications. Data-driven analytical frameworks
help businesses make decisions. Machine learning techniques
boost supply chain mechanics. Automation has replaced human
intervention in industries where resourcing has proved
challenging during the pandemic. The list of digital enhancement
goes on.
Modern Cyber-resilience The Crucial Role of Cybersecurity in Stabilizing the 07
Modern Digital Revolution

Together with this technology revamp is the renewed focus

on cybersecurity, as businesses have realized that an
Businesses have realized
unsecured digital transformation can have catastrophic
effects on their regulatory compliance, client relationships, that an unsecured digital
and reputation. The security checklist of today’s digital-first transformation can have
enterprise must contain, at the very least, the following 3
catastrophic effects
prerequisites:

Ensuring With regulatory frameworks evolving globally, compliance

needs to be a constant priority. Organizations need to be
compliance with strategic when it comes to deciding where to store data,
regulations how to design and implement products, and how to build
in regulatory compliance with the fabric of the business,
including product development, data architecture, privacy
engineering, accessibility, and customer-facing
capabilities.

Championing While many enterprises have implemented security

awareness training programs, they often are not always
internal security customized to address the security issues associated with
awareness remote operations and workforces. This has left open a
growing set of vulnerabilities that urgently needs to be
addressed.

Building security This approach protects enterprises by reducing the scope

of potential vulnerabilities by adopting a “never trust,
plans around a always verify” philosophy. Instead of relying on the
Zero Trust corporate firewall as a primary defense, the Zero Trust
security model adapts to the complexity of the modern
approach environment, embraces the hybrid workplace, and
protects people, devices, apps, and data wherever they’re
located.
Modern Cyber-resilience The Crucial Role of Cybersecurity in Stabilizing the 08
Modern Digital Revolution

Learning from the past, preparing for the

future: the evolving role of cybersecurity in
economic growth
With digital transformation having moved from being a buzzword to becoming a necessary, definitive reality in
today’s modern organizations, new catalysts are driving today’s risk landscapes:

Multi-cloud With the rise of cloud applications and networks,

enterprise data now live in multiple ecosystems, often
complexity split between cloud and on-premises infrastructure. As a
result, applying a single and comprehensive security
strategy over the entire network becomes incredibly
challenging. While some applications might provide
robust security protocols to protect their clients’
enterprise data, relying solely on external applications is
far from an airtight strategy. Tasked with the need to gain
fuller visibility into their data ecosystems, enterprises are
increasingly leveraging centralized cloud providers to gain
an overarching view of their digital assets.

Expanding attack With enterprise ecosystems relying on a larger volume of

data and applications than ever before, the potential for
surfaces cyberattacks is much higher within the digital realm.
Hackers have more opportunities: with unaddressed
security gaps opening almost daily, security teams must
employ smarter techniques to identify risks and secure
widening threat perimeters effectively.

Increasingly Hackers are becoming more sophisticated—with smart,

modern technologies acting as catalysts. The same
intelligent attacks advanced technologies (such as artificial intelligence (AI))
available to security professionals are also available to
cybercriminals. With more devices and unsecured
endpoints at the network edge than ever before, a new
challenge frames modern security: extending the purview
of cybersecurity beyond the traditional corporate network
core.

To succeed within this new normal, strategic businesses need to champion and enforce top-down, security-first
practices from within.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 09
Cybersecurity Investments

The Tangible Return on

Investment (ROI) of
Cybersecurity Investments

This section will take a deep dive into the state of cybersecurity
within each country in Microsoft’s Asia-Pacific Public Sector
Cybersecurity Executive Council: Malaysia, South Korea, Thailand,
Indonesia, Philippines, Singapore, Vietnam, and Brunei. Through
in-depth interviews featuring key cybersecurity decision-makers
within these economies, Frost & Sullivan aims to paint a
contemporary and nuanced portrait of the trends and technologies
driving the cybersecurity strategies of Asia-Pacific governments.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 10
Cybersecurity Investments

Singapore
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
The COVID-19 pandemic intensified challenges in Singapore. The rapid and extensive movement to online work,
study, and leisure combined with the fear and uncertainty of the pandemic created an environment for cybercrime.

Move to online created an opportunity for cybercrime

The COVID-19 pandemic created unprecedented challenges for
According to the
Singapore and its inhabitants. Singapore’s circuit breaker
stay-at-home orders moved work, study, communications, and Cyber Security
transactions online. The huge volume of activity coupled with the Agency of Singapore
fear and uncertainty of the pandemic created an environment
that bad actors were eager to exploit.
(CSA), cybercrime
accounted for 43%
As businesses moved to a remote work model and students were of total crime in
kept out of classrooms, attacks on the technologies required to
work and study from home increased. According to the Cyber
Singapore in 2020
Security Agency of Singapore (CSA), cybercrime accounted for
43% of total crime in Singapore in 2020. The attacks were not
only meant to disrupt and destroy but also were often financially
motivated.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 11
Cybersecurity Investments

With a rise in eCommerce, Singapore saw a proliferation of

online marketplaces and social media used for online
With the already rapid pace of
transactions. These became favored locations for
cybercrime, scamming users who lacked cybersecurity digitalization accelerated by the
awareness and those acting out of fear of the virus. An pandemic, the risk of
annual report by the CSA found that ransomware attacks cyberthreats has increased.
increased by 154% in Singapore from 2019 to 2020. Creating the consensus,
Individuals targeted for financial gain were not the main collaboration, and capabilities we
source of phishing victims. The majority were small and
need is integral to keeping the
medium-sized enterprises, highlighting the need for greater
digital domain secure and to
cybersecurity training for enterprises.
maintain an open and
Singapore is experiencing and preparing for the shifting interoperable cyberenvironment.
cyberenvironment and the impact of global trends including The Singapore Cybersecurity
disruptive and emerging technologies such as edge Strategy 2021 uses these core
computing and the proliferation of digital devices, the principles and concepts to
growing volume and effect of cyber-risks on the physical
secure the nation against
world, ubiquitous connectivity dramatically increasing the
constantly evolving digital
attack surface, and increased geopolitical tensions related to
cyber-capabilities and standard-setting authority. threats.

Singapore’s effort to improve cybersecurity across

people, policy, and technology innovation
David Koh
Recognizing the threat of increased digitalization, Singapore
Chief Executive
updated its cybersecurity strategy in 2021. This plan aims to
Cyber Security Agency of Singapore
make Singapore more cyber-resilient through the key
missions of defending the nation’s cyberspace, simplifying
cybersecurity for end-users, and promoting the
development of international standards for cybersecurity.

As cyberthreats are
The Singapore Cybersecurity Strategy 2021 directly
addresses the current issues facing the nation. The plan international and
calls for safeguarding important infrastructure, entities, cross-border, Singapore
and systems. The strategy also seeks to safeguard
also aims to develop
cyberactivity and secure the digital economy. As
cyberthreats are international and cross-border, the plan technical and interoperable
also aims to develop technical and interoperable international standards
international standards. Foundational to these
parameters, the strategy emphasizes the development of
a cybersecurity ecosystem through innovation and market
growth and the development of human talent, especially
through supporting youth, women, and mid-career
professionals to pursue careers in cybersecurity.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 12
Cybersecurity Investments

Talent and ecosystem development to improve

cybersecurity
The adoption of digital
Of the foundational tenets of the Singapore Cybersecurity
Strategy 2021, two relate to talent and ecosystem technologies has accelerated due
development. Singapore is partnering with global industry to the pandemic, and hybrid
leaders to develop a vibrant cybersecurity ecosystem and work is here to stay. As we adapt
grow a robust cyber-talent pipeline. to the new work reality, mindsets
need to shift from legacy
The CSA is developing cybersecurity capabilities through
paradigms to focus on upholding
engagement with industry. The agency is deepening
good cybersecurity practices,
collaboration with Microsoft, naming the company an
Advocate Partner in the SG Cyber Safe Partnership raising cybersecurity literacy, and
Programme. honing talent skills around Zero
Trust to protect the enterprise.
This partnership includes the co-development of programs We are committed to bringing
to promote cybersecurity awareness and adoption and the best of Microsoft Security
further permeation of Microsoft resources, solutions, and
solutions closer to local
knowledge among Singaporeans.
businesses and individuals as we
Singapore is a leader in the region, committed to developing collectively build a resilient,
a healthy and secure digital ecosystem. Through the strong digitally inclusive Singapore.
duty of government and the collaboration with industry,
Singapore is well positioned to lead cybersecurity best
practice development in the region and globally. Richard Koh
Chief Technology Officer
Microsoft Singapore
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 13
Cybersecurity Investments

South Korea
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
The COVID-19 pandemic intensified challenges in South Korea. Online work, study, and leisure created an
unprecedented volume of online interaction and transaction, creating an environment for cybercrime.

Move online created an opportunity for cybercrime

Impacted early on by the pandemic, South Korea was one of the
According to Statistics
first countries to report cases outside China. In the initial stages
of the pandemic, with a lack of information on the virus, South Korea, from April to
Korea made several choices that led to largely successful June 2021, online
prevention. These included travel limitations and social
distancing measures that kept more citizens at home and online.
transactions rose by
25.1% from the same
Consumers have become increasingly comfortable with online period in 2020
transactions. According to Statistics Korea, from April to June
2021, online transactions rose by 25.1% from the same period in
2020.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 14
Cybersecurity Investments

The increased activity online has created vulnerabilities for South Korean organizations and citizens. For
individuals, it is most commonly phishing calls. For enterprises, the major type of cyberattack is ransomware. In
2020, South Korea experienced more than twice the number of ransomware attacks experienced in the 2
previous years combined, according to data from the country’s Ministry of Information, Communication and
Technology (ICT).

Though a commitment from the government to help curb cybercrime exists, attackers and hackers have high
technological skills. They are evolving, targeting companies that have invested in information technology
systems without sufficient security, especially large enterprises and small and medium businesses (SMBs) in
manufacturing.

A significant threat also comes from nation-states, targeting South Korean industry, defense, and capability
from an orchestrated national level.

To improve the country’s security posture, South Korea needs more robust cybersecurity awareness and
investment in technologies by organizations.

South Korea’s effort to improve cybersecurity across

people, policy, and technology innovation
It is imperative that industries
The National Security Council has coordinated cybersecurity
since 2015 under its president, with inputs and work together with the
responsibilities from national defense, government, and government and authorities to
public and private sector agencies. This has improved achieve their goals and develop a
cybersecurity capability and signaled a commitment to more secure, sustainable digital
creating a more digitally secure country through programs environment. Microsoft is
such as the National Cyber Threat Information platform for
committed to supporting South
sharing incident information and investigation.
Korea’s agencies as they combat
In 2019, South Korea created the National Cybersecurity cybercrime through awareness
Strategy and the National Cybersecurity Basic Plan to and initiatives.
address the shortcomings across all implementing agencies.
Much of the plan relates to international collaboration,
norm-setting, crisis management, information sharing, and Yongnyuo Shin
protecting essential national infrastructure. In response to National Technical Officer
the pandemic, in 2020, South Korea created the Digital New Microsoft Korea
Deal (under the Korean New Deal) to improve digital
infrastructure and cybersecurity, including digital education,
fostering low-touch environments, and strong integration of
data, networks, and artificial intelligence.

Security agencies are being given more authority and are committed to investing resources in efforts against
cyber-enabled financial crime, including a 2-week cybersecurity exercise organized by the South Korean
Ministry of Science and ICT in May 2021.

The main goal of security agencies and efforts is to create a more secure infrastructure, strengthen incident
response, and foster the information protection industry, supporting self-sufficiency for local companies. To
reach self-sufficiency, these initiatives recognize the role of global partnership.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 15
Cybersecurity Investments

Infrastructure development to improve security

Working with industry is an important part of enabling secure
The Future Ready
digital transformation. South Korea is partnering with global
industry leaders such as Microsoft to improve the digital future. In
campaign will, in time,
2015, Microsoft began running the Future Ready campaign, which reduce the challenges
includes using its technologies in grade schools to create a faced by South Korea
software-oriented society. This initiative will, in time, reduce the
today by improving the
challenges faced by South Korea today by improving the awareness
of individuals in their personal lives and workplaces. awareness of individuals
in their personal lives
To improve the national infrastructure and SMB cybersecurity and workplaces
outlook, South Korea has committed to sustained internal effort,
supported by global industry collaboration.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 16
Cybersecurity Investments

Malaysia
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
Malaysia faced a challenging situation brought on by the COVID-19 pandemic. In addition to stretched health
resources, the restrictive Movement Control Order, and general uncertainty, increased cybersecurity
challenges arose.

Increasing digitization brought about increasing

cybercrime
Protecting Malaysia requires a
The COVID-19 pandemic created an environment in which
an unprecedented volume of activities was brought online. team effort, empowering people,
From remote work and study to online shopping, the creating guiding policies and
number of people online increased dramatically, as did enabling with technology.
online transactions per person. Bank Negara Malaysia said Cybersecurity cannot be seen as
online retail sales almost doubled during 2020. With more just an information technology
activities being conducted online due to COVID-19,
function but must have an
cybercriminals saw an opportunity in the huge volume of
elevated role in enterprises.
identities and devices connected, which led to a dramatic
increase in cybercrime. However, the proliferation of devices
and activity was not the only reason for increased
opportunity. Malaysians’ awareness of cybersecurity has not
matched up to its increasing focus on digitization.
Dato' Ts. Dr. Amirudin Abdul Wahab
CyberSecurity Malaysia’s Cyber999 Help Centre receives
Chief Executive Officer
about 10,000 reported incidents per year. These incidents
CyberSecurity Malaysia
are primarily related to humans, with the top incident types
being fraud, intrusion, and malicious code/ransomware.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 17
Cybersecurity Investments

Insufficient training, awareness, investment, and priority placed on securing digital assets and ecosystems create
risk. However, even with recognition and focus on the need for cybersecurity, more challenges exist. Globally and
nationally, not enough cyber security professionals exist to fill the need.

Malaysia requires a minimum of 20,000 knowledge workers by 2025, as depicted in the Malaysia Digital Economy
Blueprint. As of 1 November 2021, CyberSecurity Malaysia had already registered 13,546 cybersecurity knowledge
workers.

Malaysia’s effort to improve cybersecurity across people,

policy, and technology innovation
The recently announced
Malaysia has been developing its digital economy for years and has
been a regional hub for information communication technology 12th Malaysia Plan has
since the launch of the Multimedia Super Corridor (MSC) in 1996. stated goals to
Digital portals are used for government and most commercial accelerate technology
industries to facilitate administration, communication, and
adoption and innovation
transactions. Several cyberlaws have been enacted in the country,
dating back to the Computer Crimes Act of 1997, but the challenge and a continued focus
of protecting the digital realm remains. on the digital economy

The recently announced 12th Malaysia Plan has stated goals to

accelerate technology adoption and innovation and a continued
focus on the digital economy. These goals require a commitment to
cybersecurity through policy development and support for users
and enterprises.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 18
Cybersecurity Investments

SiberKASA
One of the top programs related to improving cybersecurity
Cybersecurity is a key enabler for
is CyberSecurity Malaysia’s Cyber Security Empowerment
Programme (SiberKASA). Aimed at developing and digital transformation. Without
empowering the cybersecurity ecosystem of Malaysia, security, relying on digital is a
SiberKASA offers training and guidelines for more than 35 business risk, and may hamper
types of services offered by CyberSecurity Malaysia. The organizational progress.
services offered include the Cyber999 hotline and MyCERT, Malaysians must focus on
the Malaysia Computer Emergency Response Team, which
building digital resilience to
performs 24x7 computer security incident response to any
protect our businesses and loved
user, company, government agency, or organization.
ones.
Launched in March, much of SiberKASA’s work so far has
been around creating awareness, a primary issue for
cybersecurity in Malaysia. CyberSAFE provides a gallery to
Dr. Dzaharudin Mansor
increase awareness of online safety for all users, even as
National Technology Officer
young as school children. To address the lack of
Microsoft Malaysia
cybersecurity professionals, Malaysia provides technical
skills training through a partnership with government,
industry, and academia with CyberGuru professional
development and the GlobalACE certification program
aligned with international standards.
Malaysia is poised to
A safer cyber future for Malaysia develop into a regional
Malaysia was named the 5th country globally for leader of safe
commitment to cybersecurity in the International
digitalization
Telecommunication Union’s Global CyberSecurity Index
2020. The initiatives set forth by CyberSecurity Malaysia in
support of the 12th Malaysia Plan exemplify the country’s
commitment. Furthermore, while Malaysia champions local
industry, global partners are not forgotten. As part of the
MyDIGITAL Initiative, global leaders such as Microsoft and
other global service providers will work with local players to
facilitate hybrid cloud data collection, processing, and
storage for the country.

With a strong emphasis on developing cybersecurity

through awareness and training, Malaysia is poised to
develop into a regional leader of safe digitalization. The
initiatives of the 12th Malaysia plan, the efforts of
CyberSecurity Malaysia, and the willingness to partner with
global industry-leading companies illustrate a commitment
to improving cybersecurity for the growing number of
connected Malaysians.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 19
Cybersecurity Investments

Thailand
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
The COVID-19 pandemic intensified challenges in Thailand. The huge volume of work, study, and leisure that
transformed to online interaction and transaction created an environment for cybercrime.

Move online created an opportunity for cybercrime

The COVID-19 pandemic necessitated remote work, study
COVID-19 showed us that
and daily transaction as businesses and schools were
forced to close, and citizens in Thailand restricted in their prevention provides better
movement. With an unprecedented volume of outcomes than reactive
communication and activity happening online, more treatment and this is the same
cybersecurity risks arose. Thai citizens were using for cybersecurity. Awareness of
unsecured equipment and devices, leaving them exposed threats is the best vaccination
to cybercrime. A lack of information technology (IT) and
to provide protection and
security staff led to insufficient monitoring and meant that
cyber-resiliency. An increasing
unaware employees exposed businesses to cyberattacks.
number of people are
The Cyber Investigation Center of the Bureau of interacting in cyberspace and
Technology and Cyber Crime of the Department of Special they need this vaccination of
Investigation developed a mobile application, “Rootan,” to awareness to stay safe.
assist in preventing and suppressing cyberthreats.
Statistics from the app have found that the most reported
attacks are online loan scams and goods/service trading
scams. Romance scams that deceived Thai women out of
money by social engineering have become prevalent and Gp Capt Amorn Chomchoey
harmful, leading to the Police Crime Suppression Division Deputy Secretary General
issuing a warning to be aware. The pandemic has created NCSA Thailand
great financial hardship for many citizens who were
deceived and left in greater trouble.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 20
Cybersecurity Investments

Organizations, too, are at risk of cyberattack. The National Cyber Security Agency (NCSA) stated that at least 200
critical information infrastructure organizations in sectors including healthcare, aviation, insurance, and others
urgently need to adopt necessary measures to guard against cyberattacks. According to a Thai Public
Broadcasting Service report, 1 major e-commerce platform attack leaked 13 million customers’ data in November
2020, which was made available for purchase on an underground website.

Personal data breaches have become increasingly common and destructive, and huge volumes of data have been
leaked. Even so, the planned 2020 Personal Data Protection Act was postponed, and the International
Telecommunication Union’s Global Cybersecurity Index 2020, which measures countries’ commitment to
cybersecurity, ranked Thailand 44th, down from 35th in 2018.

Thailand’s effort to improve cybersecurity across

people, policy, and technology innovation
Cybersecurity is a team sport
The COVID-19 pandemic weakened Thailand’s cybersecurity
posture but has also generated fresh attention to solving and cannot be solved by 1
the issues of data protection and cybersecurity. stakeholder alone.
Public–private partnership is
Thailand is developing initiatives to build capability in terms vital to improving cybersecurity
of personnel. The goal is to have 2,250 cybersecurity within Thailand, regionally and
experts in the country by 2022 through upskilling and
globally.
education programs, starting with critical infrastructure and
government IT workers. To address the country’s future
needs, education programs for students from junior high
school and up have been implemented to encourage and
develop their cybersecurity knowledge.

Training and public awareness are complemented by the

ThaiCERT, which is the national Computer Security Incident
Response Team that is responsible for dealing with Ome Sivadith
Thailand’s computer security incidents. ThaiCERT is an National Technology Officer
example of best practices developed through collaboration Microsoft Thailand
between government, academia, and industry.

Collaboration to develop capability

Thailand recognizes that endeavoring to build capability is best approached with the expertise of industry.
Partnering with global technology leader Microsoft, the Ministry of Labour announced a program to upskill 4
million Thais to create a more secure digital workforce.

Through online training, Thailand and Microsoft will develop the skills and awareness needed for the country’s
digital future. This initiative starts with training the trainers to enable trainer attendees to pass on knowledge
gained and introductory digital skills courses in the Thai language to improve the Thai workforce’s skills.

Thailand was dealt a heavy blow by the COVID-19 pandemic and the ensuing environment for cybercrime.
Theft and leakage of personal data damaged the country financially and psychologically. To combat
cybercrime, Thailand is embarking on a massive awareness and upskilling campaign to prepare citizens better
for cyberattacks in the future. Through collaboration with industry leaders, the country stands to gain global
best practices in the partnership. Renewed commitment to cybersecurity will prepare Thailand for a future in
an increasingly digital world.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 21
Cybersecurity Investments

The Philippines
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
The COVID-19 pandemic brought new challenges for the Philippines. Closure of businesses, deteriorating
public confidence in government, and increased activity online because of the pandemic have created an
environment for cybercrime.

Move to online created an opportunity for cybercrime

The COVID-19 pandemic limited mobility and necessitated
Our lives are intertwined with
social distancing, creating massive disruption in business and
personal life. Work, study, social life, and transactions moved technology, creating great
further online. A Rakuten Insight survey found that 63% of potential but also risk. The whole
Filipino consumers cited the closure of non-essential nation needs to work together to
businesses as the primary reason for increasing online stamp out cybercrime with
purchases. This shift created a massive requirement for capacity building, by improving
affordable digital technologies and improved connectivity.
awareness and sharing
knowledge to help protect
With more than 7,000 islands and limited resources, the
Philippines faces challenging infrastructure logistics everyone.
requirements. The more activity has moved online, the greater
the burden on existing networks, and connectivity issues have
become more widespread. This will continue to be a problem
Mary Rose E. Magsaysay
as more people connect. The World Bank states that nearly
Director
60% of households in the Philippines still did not have an
Cybercrime Investigation and Coordination
internet connection in 2020. There remains huge potential for
growth in the country, and the entry of a 3rd telco in 2021 will
help realize that growth. However, as more people and
businesses connect digitally, this creates more risk.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 22
Cybersecurity Investments

Philippines’ effort to improve cybersecurity across people, policy,

and technology innovation
One of the most
The Philippines focuses on improving competency in cybersecurity
through government initiatives, including the Cybercrime Investigation important functions of
and Coordinating Center (CICC). the CICC is to improve
Formation of the CICC
public awareness of
The CICC evolved to prevent cybercrime and monitor cybercrime cybercrime
cases. The organization has received renewed attention since 2020
and the increase in cybercrime.

The CICC services include a computer emergency response team

(CERT), cybercrime investigation, prevention programs, training, and
more. The CICC develops programs and services of its own accord but
is also committed to promoting collaboration across agencies and
draws on other government agencies to suppress cybercrime. One
example is the National Privacy Commission (NPC) and the CICC’s
collaboration to enhance the NPC’s capability for digital forensics.

One of the most important functions of the CICC is to improve public

awareness of cybercrime. The human element is important as many
cybersecurity issues stem from humans. Tackling the lack of
information and difficulty in information dissemination, the CICC looks
beyond industry and government directly to the Filipino people. By
addressing the people through awareness campaigns and specifically
targeting the people with the least access to information or education,
the CICC addresses the issue directly. This can be challenging because
of a lingering distrust in government, which necessitates industry
partnership.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 23
Cybersecurity Investments

Government capacity building

The CICC uses a strategic approach to harmonize
Cybersecurity cannot be a single
government cyber-initiatives and eradicate duplication,
rationalizing spending. One of the most pressing issues is organization’s responsibility.
technical training. The Department of Information and Technology vendors,
Communications Technology (DICT) tasked the CICC with government, and enterprises
handling all training for cybersafe digital transformation for need to come together to ensure
the entire Philippines government. So far, across 150 that technology adoption and
government units, including institutional partners such as the
policy are being developed
military, central banking, and social security, 750 people have
hand-in-hand, to protect the
been onboarded to the initial training. The goal is to reach
2,000 trained government staff by December. country and its citizens against
cybercrime.
An effort to increase the participation of women in cyber
exists. The country is encouraging cyber-education for girls
Joanna Velez Rodriguez
from a young age through the Girl Scouts up to higher
Public Sector Director
education at the Philippines Women’s University.
Microsoft Philippines

Partnering to protect the Philippines

The Philippines has called upon industry leader Microsoft,
which in 2020 celebrated 25 years in the country, to support
cybercrime reduction. A 2021 initiative provides free training
The purpose of the GSP is
for civil servants and the workforce on a portal provided by
the DICT in partnership with Microsoft. The training covers to help governments
hundreds of learning paths and 21 roles to improve protect themselves and
knowledge and skills across the information communications
their citizens by enabling
technology industry. The initiative aims to empower Filipinos
to drive digital transformation, especially in government. trust and transparency

Microsoft also supports the CICC through the Government

Security Program (GSP). The purpose of the GSP is to help
governments protect themselves and their citizens by
enabling trust and transparency, providing access to security
information about Microsoft products and services, providing
data to improve the protection of government information
technology against cyberthreats, and fostering collaboration
between Microsoft security teams and government
cybersecurity experts. Through the GSP, the CICC aims to be
more responsive and proactive in providing a safe and
secure Philippine cyber-ecosystem.

Through a strong partnership with industry, the Philippines

government is confident in developing the necessary
resources and knowledge to enable safe digital
transformation in the country.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 24
Cybersecurity Investments

Indonesia
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
The COVID-19 pandemic has created a challenging environment in Indonesia. The shift to online work,
education, and communication has created an unprecedented volume of online interaction and transaction
and fostered a setting for cybercrime.

Move online created an opportunity for cybercrime

Indonesia’s internet usage had already reached 73.7% of the population in 2019, according to Statista, but
with the COVID-19 pandemic, the volume of online interaction rose dramatically. Movement control orders
and social distancing requirements moved work, education, and most activity to the digital sphere. This
increased attack surface, along with the uncertainty and misinformation surrounding the pandemic, created
an environment for cybercriminals to take advantage of Indonesians, increasing ransomware, phishing, and
social engineering attacks on individuals and businesses.

According to the Indonesian National Cybersecurity Operations Center, the number of attacks in 2020
increased 133% from 2019 levels. Increasingly targeted digitalization areas included smart education,
e-commerce, digital logistics, and health tech. With increased online shopping and the geographic makeup of
Indonesia, eCommerce and digital logistics became a major area of activity and a mark for increased
cybercrime. The most prevalent type of cyberattack in 2020 was Trojan malware, as the volume of digital
communications reached an all-time high and many enterprises were unprepared for evolving threats.

Data breaches are impacting Indonesia and its citizens through leaks of personal data, including sensitive
information such as healthcare records. However, the population still has a low level of awareness. Digital
literacy is a major challenge in Indonesia, and the discrepancy between the many regions in the country
creates further difficulty in achieving a minimum level of digital knowledge.

The government of Indonesia has recognized that increasing cybercrime is impacting citizens and enterprises
and has committed to improving cybersecurity through the development of new programs.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 25
Cybersecurity Investments

Indonesia’s effort to improve cybersecurity across

people, policy, and technology innovation
Everyone needs to understand
The initiatives in Indonesia have drawn on government,
academia, industry, and the public to improve cybersecurity cyber-risk; individuals,
in the country. enterprises, and top leaders. It is
key that we all work together to
In 2020, the Indonesia State Cyber and Crypto Agency (BSSN) improve digital safety through
completed a draft of the National Cyber Security Strategy and improving digital literacy.
asked for feedback from the public. This plan is still in
Through leveraging people,
development, but some programs are already in place to
process, and technology we can
address cybercrime and preparedness. These include the
BSSN’s Information Security Index to help institutions make Indonesia a safer
evaluate their digital readiness and a National Digital Literacy cyberenvironment for citizens
Program to promote knowledge across the themes of digital and businesses.
media culture, safety, ethics, and competence.

Infrastructure development to improve security

Indonesia and the BSSN recognize that best practices and
partnerships with global industry leaders can help achieve Pak Panji Wasmana
the country’s goals. The Digital Crime Unit has partnered with National Technical Officer
Microsoft in a campaign for Cyber Security and Information Microsoft Indonesia
Protection through the Microsoft Cyber Threat Intelligence
Program to promote cybersecurity awareness.

Protection of essential national infrastructure is a vital goal of

the BSSN, and an area in which Microsoft is supporting the
Indonesia is trying to
country. Microsoft is supporting the country through
government partnership and public works such as a new improve the
regional data center that will skill 3 million Indonesians. This cyberenvironment of the
upskilling program moves Microsoft closer to its goal of
providing digital skill training to 24 million Indonesians by the
country through
end of 2021. For the growing number of remote workers, improvements in digital
Microsoft supports the highest level of protection through literacy and
zero trust initiatives to help Indonesians work securely from
home. Microsoft is also partnering with local players,
infrastructure
including targeted industries such as telecommunications
and e-commerce, to empower the digital economy and
securely accelerate transformation.

Through country-led initiatives and the support of global

industry leaders, Indonesia is trying to improve the
cyberenvironment of the country through improvements in
digital literacy and infrastructure. With feedback from the
public, future initiatives will be able to meet the cybersecurity
needs of the country precisely in ways that the whole
ecosystem supports.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 26
Cybersecurity Investments

Vietnam
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
The COVID-19 pandemic aggravated challenges in Vietnam. Increased digitalization, use of social media, and
lack of awareness of cyberthreats created an ideal environment for cybercrime.

Move online created an opportunity for cybercrime

COVID-19 intensified many issues already present in Vietnam. A zero-COVID-19 strategy ultimately brought on
strict months-long lockdowns, business closures, and social distancing, moving an unprecedented volume of
activities online. As a new reliance on technology spread among individuals, businesses, and organizations,
cybersecurity issues amplified.

Fraud, especially through social media, became a major issue. Facebook sued a group of Vietnamese
individuals for deceptive and unauthorized advertising on the social media platform. Scams on social media
are affecting a larger percentage of the population, especially the young and uneducated. According to leading
social media dashboards, Hootsuite and We Are Social, 73.7% of the population was active on social media as
of January 2021, a higher percentage than the United States.

The top cyberattack types, born of social media and elsewhere, were phishing, web defacing, and malware.
The number of attacks and the impact of damage were significantly higher than in previous years. As
companies, organizations, and individuals continue to increase their proportion of online activity and further
digitalize, the opportunity for attack multiplies. Data from the Ministry of Information and Communications
(MIC) shows that, in the first 6 months of 2021, there was a 45% increase in attacks year on year. The MIC also
states that attacks are increasing in sophistication and damage.

As all human activity becomes more digitalized, there is a recognized need for proper protection. Better
awareness of potential deception is required, as well active support by the government in preventing attacks
or at least catching them early.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 27
Cybersecurity Investments

Vietnam’s effort to improve cybersecurity across people,

policy, and technology innovation
In 2018, Vietnam adopted the Law on Cybersecurity, creating
Industry and government must
a stricter regulatory environment, and draft guidelines are in work together to protect the
development to provide more detail on how to follow the law. nation from cybercrime. The
Furthermore, in 2020, Vietnam had jumped 25 spots to 25th Government Protection Security
globally in the Global Cybersecurity Index by the International Program is foundational to the
Telecommunications Union. Defending a nation’s digital
safety of Vietnam.
environment is not simple, but the initiatives of the Ministry of
Public Security show commitment to reducing cybercrime and
protecting public security.
Thang Phung
Arguably, there is no more important area of national security Director, Public Sector and
to protect than government. As part of the eGovernment Enterprise Commercial
development strategy towards digital government in the Microsoft Vietnam
period 2021–2025, cybersecurity is a primary consideration.
Digitalizing identification, health records, and student
transcripts all require a high level of attention in protecting
personally identifiable information. To improve cyber-safety,
Through the combined
the Vietnam government is adopting various best practices,
especially with the collaboration of industry leaders. efforts of government
and industry, Vietnam has
International program to improve security
Vietnam’s MIC required all ministries, branches, and local
made a commitment to
offices of Vietnam’s government to adopt a multilayered eradicate cybercrime in
cybersecurity model by the end of September 2020.
the country
Government protection is a top priority and the ministry is
working with industry to implement the best security
solutions.

The Department of Cyber Security and High-Tech Crime

Prevention at the Ministry of Public Security is a member of
Microsoft’s government security program. The program,
agreed by over 90 agencies in 45 countries, aims to build trust
through transparency and enable governments to protect
their citizens through Microsoft technology.

Through the program, Vietnam is better able to tackle the

issue of malware through access to Microsoft’s information on
attack vectors, risks, and vulnerabilities and support from the
Microsoft cybersecurity response teams.

The Ministry of Public Security has also partnered with

Microsoft to develop and support programs required to train
and appraise security experts in the country.

Through the combined efforts of government and industry,

Vietnam has made a commitment to eradicate cybercrime in
the country. Focusing on collaborative efforts to gather,
utilize, and disseminate information as needed, the country is
improving its cybersecurity outlook.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 28
Cybersecurity Investments

Brunei
Challenges to cyber-safety exacerbated by the COVID-19 pandemic
The COVID-19 pandemic accelerated digital transformation in Brunei. An unprecedented number of online
interactions and transactions began because of the shift to online work, education, and communication,
creating an environment for cybercrime.

Move online created an opportunity for cybercrime

Brunei had very few COVID-19 infections until August 2021 but still imposed travel restrictions and required
the closure of businesses to prevent the spread of the virus. When the Delta variant reached the country, the
government imposed a partial lockdown and curfew and deployed vaccinations. The restrictions on
movement created a need for increased digital interaction. According to the second Minister of Finance and
Economy, in 2021, broadband usage in the country had increased 300% compared to 2 years earlier. The
strain on infrastructure created slow connections and interruptions.

Digital transformation is still in its infancy in Brunei. Some industries such as oil and gas, banking, financial
services and insurance, and telecommunications companies have very high levels of technology adoption
compared to the rest of the country, reflecting their high contribution to gross domestic product and their
strict regulatory requirements. However, the public sector, the largest employment segment in Brunei, lags in
technological adoption. The COVID-19 pandemic accelerated technological adoption and digital
transformation and increased attack surface, which can be especially dangerous when connected to critical
national infrastructure.

The major types of cybercrime in the country are scams and malicious code. Though some targeted initiatives
against certain cyberattack have been successful, such as Operation Goldfish Alpha against cryptojacking,
instances of phishing and ransomware continue to increase. The low level of technology adoption in most
areas implies that individuals and businesses are unprepared for cyberattack. Statistics from the Brunei
Computer Emergency Response Team in 2018 showed that cyberattacks in Brunei increased by 39% year over
year, requiring a new commitment to cybersecurity.
Modern Cyber-resilience The Tangible Return on Investment (ROI) of 29
Cybersecurity Investments

Brunei’s effort to improve cybersecurity across people,

policy, and technology innovation
The E-Government National Center oversees technology It is important that government,
procurement, personnel development, and technology citizens and organizations work
applications for the government. In addition, a dedicated together to create trusted
cybersecurity agency is committed to further improving partnerships and promote digital
awareness and capabilities. Cyber Security Brunei, under the
Ministry of Transport and Infocommunications began
best practices. Privacy and
operations in August 2020. security should be at the center
of innovation and progress.
Cyber Security Brunei is responsible for 3 government Public–private partnership is the
cybersecurity services: the Brunei Computer Emergency
cornerstone to building effective
Response Team, the National Digital Forensic Laboratory,
and the Cyber Watch Centre. Cyber Security Brunei aims to critical infrastructure protection
improve cyber-crisis management, enhance law enforcement right now, and for the future.
capabilities, and improve awareness of cyberthreats among
the public and in the public and private sectors.
Afif Mohamed Ali
The public sector is the biggest employer in Brunei, creating a
National Technical Officer
requirement for cybersecurity awareness among individuals
Microsoft Brunei
to safeguard vital national infrastructure. Furthermore, the
government recognizes the need for more training and
awareness, especially with the uptake of remote work.

Global partners to develop capability

According to Microsoft’s Digital Defense Report, Brunei has a
According to Microsoft’s
very low level of cybercrime. However, this does not deter Digital Defense Report,
Microsoft from investing in cybersecurity awareness and
training.
Brunei has a very low
level of cybercrime
Microsoft offers cybersecurity assessments to organizations
to ensure they are properly protected and has conducted a
campaign for cybersecurity awareness. An important aspect
of Microsoft’s support for Brunei is providing support in
training and advice on a policy framework to establish a
secure and resilient cyberspace.

Brunei faces evolving challenges through the increased

adoption of digital technologies but shows its commitment to
developing secure cyberspace to safeguard national interests
and contribute to sustainable social development.
Modern Cyber-resilience Beyond the Enterprise: The Blueprint for Top-Down 30
Digital Security

Beyond the Enterprise:

The Blueprint for Top-Down
Digital Security
Examining the broader impacts of global
interconnectivity
Despite the temptation to view digitalization as an enterprise-level, industry-level or—at the most—
nation-level movement, the modern reality has reshaped cybersecurity into an interconnected global priority.
Corporations have far-flung global supply chains, social media and collaboration technologies allow for
massive data transfers across continents, and advancements such as 5G promise an imminent,
hyperconnected reality.

The pros The cons

Global interconnectivity has empowered The risks associated with rapid digitalization
people, businesses, and public services with are growing and ever-evolving, often
new opportunities in key aspects of daily life, culminating in breaches that require long
including health, transport, education, recovery times and lead to damaging
technology, and agribusiness. Digital consequences such as the loss of intellectual
transformation continues to play a critical property, online brand impersonation,
role in supporting people and businesses unauthorized access to user accounts, and
through the COVID-19 pandemic, facilitating data exfiltration; the list grows longer with
easier access to critical resources, simplifying more sophisticated attack patterns. The
communication, and enabling virtual delivery resulting loss of public trust presents a critical
of traditionally physical services such as risk that can fundamentally slow down digital
education and basic healthcare. As a result, transformation and disrupt ongoing
global interconnectivity and digitalization economic development efforts.
have played an important role in building
socioeconomic resilience.

Investing in and implementing the right solutions for a secure, connected world will lead to smoother
adoption, higher demand, safer digital supply chains, and a more stable digital journey. However, solutions
alone are not sufficient – it must be supplemented by a globally cooperative approach to fighting cybercrime.

Uniting global resources and perspectives: the impact of cybersecurity cooperation

Because cybersecurity risks are global in nature, effective threat management approaches need to be
coordinated and collaborative. Important considerations include fostering public–private sector intelligence
sharing, creating robust educational frameworks to impart standardized security training within both technical
Modern Cyber-resilience Beyond the Enterprise: The Blueprint for Top-Down 31
Digital Security

and non-technical teams, and using centralized processes for compliance, whether for the General Data
Protection Regulation, the Health Insurance Portability and Accountability Act, or country-specific data privacy
and security regulations.

The 3 key building blocks for the right cybersecurity, data protection, privacy, and online safety fundamentals
are:

Knowledge Stakeholders within and outside security functions need

to share knowledge, identify lagging expertise areas to
sharing build up, approach cybersecurity risks through the
national lens, and work with governmental agencies to
define, enable, and encourage private sector incentives to
increase investment in digital infrastructure.

Collaboration When unified through a shared partnership

approach—whether through national summits, task
and education forces, or dedicated cybersecurity
agencies—governments, businesses, and development
institutions can build multi-disciplinary strategies to build
trust, improve awareness, and deliver technical and
educational solutions to empower high-risk industries.

Public/Private While historically siloed, international security agencies

and private technology vendors are slowly moving toward
Partnerships a culture of improved cyber-intelligence sharing, building
combined best practices by leveraging their separate
streams of historic knowledge and expertise pools.

With the gradual improvement in global cyber-diplomacy, intelligence-sharing networks can catalyze dramatic
progress in securing global connectivity within both countries and private sectors.
Modern Cyber-resilience Accelerating Technology Growth with Strategic 32
Partnership

Accelerating Technology Growth

with Strategic Partnership
Leveraging the digital horsepower of
cybersecurity alliances

Historically, businesses have typically focused on building out their

own digital environments for competitive advantage, without
Governments have a
consideration for how others in the industry are approaching the
same challenges. Cybersecurity has been viewed through the same broad view of threats
lens, whereby collaboration has not been perceived as a priority and, but tend to approach
in some cases, might also represent a competitive risk. The past
decade of rapid digital advancements has changed the game. With
cybersecurity as a
new technologies, the resultant whirlwind of unseen risks, and the national security
instability generated by rapid innovation without comprehensive risk objective
management, collaboration is now a critical necessity.

With their expansive law enforcement and national intelligence

forces, governments have had a broad view of threats but tend to
approach cybersecurity as a national security objective rather than a
commercial risk factor. On the other hand, corporations only possess
risk information specific to their own companies or—at the
most—their specific industry sectors. While they can typically have
their pick of cybersecurity talent, they often possess neither the
resources nor the responsibility to address economy-wide threats
posed by attackers aiming to destabilize broader state networks. For
a clearer view of cybersecurity threats, it is critical for governments
and businesses to join forces against shared enemies by:
Modern Cyber-resilience Accelerating Technology Growth with Strategic 33
Partnership

Creating In the United Kingdom, the Cyber Security Information

Sharing Partnership is a joint industry and government
cooperative initiative launched by the National Cyber Security Centre
networks for that aims to allow the secure and dynamic exchange of
cyberthreat information in real time, increasing
cyberthreat situational awareness and reducing the impact on UK
information business. In the Asia-Pacific region, Microsoft has
launched the Asia-Pacific Public Sector Cyber Security
Executive Council to bring together policy makers from
government agencies as well as industry leaders to
promote broader sharing of threat intelligence,
technology, and resources across 8 participating
countries. Such initiatives are becoming increasingly vital,
with governments and private sectors tasked with
building trust and creating stronger, cooperative
networks for information sharing and timely threat
intelligence.

Ramping up Every institution, whether public, private, or

governmental, has been facing a dire shortage of
cyber-education cybersecurity professionals, an issue increasingly
to meet market exacerbated with the uptick in digitalization. The solution
requires a 2-pronged approach: attracting more talent to
demand cybersecurity through targeted investments in education
and ensuring that curricula provided by local universities
and certification bodies are up to date to match the pace
of the rapidly evolving threat landscape.

Cybersecurity Government initiatives to facilitate cybersecurity

collaboration with businesses are on the uptick. At the
alliances to moment, the goals of such programs largely range from
foster better defining shared cybersecurity responsibilities between
individuals, industries and government, and designating
alignment specific roles and response plans to business leaders and
between federal officials. While these initiatives are still in nascent
stages, there is an urgent need for expanded and
governments
continuous cross-border sharing of information and
and businesses resources among firms, trade associations, and
regulators.

With threat factors varying greatly by industry, cross-sector collaboration can empower governments with current,
directly actionable threat intelligence.
Modern Cyber-resilience Accelerating Technology Growth with Strategic 34
Partnership

The societal impact of secure digital

advancement: access, trust, and
reliability

With the right blend of governance technology and compliance, digital infrastructure can continue
empowering secure business transformation efforts with levers such as:

Leveraging advanced Zero trust Holistic

security to combat security protection
advanced threats

By pairing next-generation With widening network Due to the increase in volume

security technologies such as perimeters that include both and sophistication of threats,
next-generation firewalls, managed and unmanaged customers are gravitating
identity and access devices, enterprises require towards security solutions that
management, and multi-factor endpoint-to-cloud security for are able to protect their entire
authentication tools with all of their individual asset ecosystem. Managed
comprehensive breach Software-as-a-Service (SaaS), detection and response
response plans, governments Infrastructure-as-a-Service offerings that use a
and industry can be better (IaaS), or on-premises combination of cloud-native
prepared to combat the applications. When based on security information and event
evolving cyberthreats. zero trust models, centralized management (SIEM) and
endpoint security technologies integrated extended detection
can be extremely effective and response (XDR) are able to
adversaries to the growing deliver true end-to-end
army of threats targeting the visibility with clear
modern remote workforce. prioritization.

A unified security approach can meet the complex access, trust, and reliability standards demanded by today’s
digital environments, mitigating the inefficiencies brought on by siloed, disparate security products. By leveraging
the right combination of technologies, institutions can make a significant impact in protecting digital societies
from the core to the cloud.
Modern Cyber-resilience Conclusion: Designing Effective Policy Milestones 35

Conclusion: Designing Effective

Policy Milestones
Industry, government, and beyond: key
learnings from global best practices

With the emerging reality of permanently distributed workforces, cyberthreats will continue to evolve as they
zero in on the host of new vulnerabilities brought on by this redefined digital landscape. To better protect
critical information, federal agencies and private companies can work together to create significant
efficiencies in protecting both citizen and corporate data by:

Working together to create standards and practices to share information on threats, mitigation
mechanisms, and advancing security solutions;

Rapidly disseminating knowledge on evolving attack tactics as they become known so that broader
institutional networks can adopt preventative methods and share recommended mitigation approaches; and

Aligning on post-attack mitigation learnings by sharing containment strategies and increasing the
transparency in evaluating attack postmortems.
Modern Cyber-resilience Conclusion: Designing Effective Policy Milestones 36

Mapping actionable building blocks

toward a complete cybersecurity blueprint
As organizations build out their digital infrastructures to support larger remote workforces than ever seen
before, cybersecurity technologies are seeing rapid adoption from institutions that previously did not
prioritize information technology security spending. However, simply relying on leading edge or bleeding edge
technologies does not make for an effective cybersecurity strategy. Businesses need consistent policies
applied cohesively across the organization that can be put into motion easily and repeatedly and they should
adhere to the following pillars of a holistic security posture:

A. Unified B. Automated C. Collaborative

Enabling end-to-end security Systems should be automated Actively fostering industry

with single-pane visibility over to allow for rapid collection partnerships and participation
the entire attack landscape, and assessment of critical in national governmental
leveraging consistent information, and should cybersecurity programs to
configuration and policy include intelligent risk communicate ongoing threat
management for seamless detection, incident response, intelligence activities,
real-time communication and continuous compliance. learnings, and initiatives.
across networking and
security infrastructures.

About the Microsoft Asia-Pacific Public

Sector Cyber Security Executive Council
Microsoft launched the first Asia-Pacific Public Sector Cyber Security Executive Council across eight
countries in the region. Consisting of policymakers and influencers from Brunei, Indonesia, Korea,
Malaysia, Philippines, Singapore, Thailand, Vietnam, supported by cybersecurity professionals, the
council aims to accelerate public-private partnerships in cybersecurity, share threat intelligence and
build a strong and coordinated response against cyberattacks in the region.
 We Accelerate Growth WWW.FROST.COM

Auckland Colombo London Paris Singapore

Bahrain Detroit Manhattan Pune Sophia Antipolis
Bangkok Dubai Mexico City Rockville Centre Sydney
Beijing Frankfurt Miami San Antonio Taipei
Bengaluru Iskandar, Johor Bahru Milan Sao Paulo Tel Aviv
Bogota Istanbul Mumbai Seoul Tokyo
Buenos Aires Jakarta Moscow Shanghai Toronto
Cape Town Kolkata New Delhi Shenzhen Warsaw
Chennai Kuala Lumpur Oxford Silicon Valley Washington D.C.

A BO UT FROST & S U L L I V AN

Growth is a journey. We are your guide.

For over six decades, Frost & Sullivan has provided actionable insights to corporations, governments and investors, resulting in a
stream of innovative growth opportunities that allow them to maximize their economic potential, navigate emerging Mega Trends
and shape a future based on sustainable growth.

Contact us: Start the discussion.

Copyright Notice
The contents of these pages are copyright © Frost & Sullivan. All rights reserved. Except with the prior written permission of Frost & Sullivan,
you may not (whether directly or indirectly) create a database in an electronic or other form by downloading and storing all or any part of
the content of this document. No part of this document may be copied or otherwise incorporated into, transmitted to, or stored in any other
website, electronic retrieval system, publication or other work in any form (whether hard copy, electronic or otherwise) without the prior written
permission of Frost & Sullivan.