Human-Centric Cybersecurity: Why People are Vital for Cyber Resilience

On 22 February 2024, the Tech For Good Institute (TFGI) moderated a panel discussion at the 20th Edition of the Cyber Security Summit in Singapore. This dialogue revolved around the topic of adapting to a shifting threat landscape. Together with ISACA Singapore, Centre for Cybersecurity, and ISC2 Singapore, TFGI is a supporting partner of the Cyber Security Summit.

From left to right: Keith Detros, Programme Manager, Tech For Good Institute; Ethan Seow, Chief Executive Officer, Centre For Cybersecurity; Manjunath Pasupuleti, Global Head of IT-Security, ENNOVI; Sourabh Chitrachar, Regional VP, Technology Strategy & Ops, Liberty Mutual Insurance.

 

In the age of rapid digitalisation, organisations globally confront an ever-evolving array of risks in the digital space. Generative AI, large language models, and deep fakes, coupled with the increasing shift towards automation, has heightened the complexities of the cyber threat landscape. For example, phishing and ransomware tactics have also increased in sophistication by leveraging emerging technologies.

To safeguard against an evolving threat landscape, there is a need for companies to focus on solutions beyond mere technological means. Organised by Exito and supported by the Tech for Good Institute, ISACA Singapore, Centre for Cybersecurity, and ISC2 Singapore, the 20th edition of the Cybersecurity Summit in Singapore dedicated a panel to discuss how human-centric approaches are just as critical as tools, frameworks, and processes in fortifying cyber security defences.

Distinguished cyber experts provided invaluable insights into dynamic threat assessment, resilient security strategies, and highlighted the importance of fostering a culture of cybersecurity within organisations.

 

Moderator and panellists:


Key takeaways:

1. Leveraging Frameworks and Technology to Bolster Cyber Defences

Before delving into the importance of people, the experts first noted the importance of adopting globally recognised frameworks and emerging technologies to improve cybersecurity. This includes trusted frameworks such as the recently updated National Institute of Standards and Technology’s Cybersecurity Framework 2.0 and creating a zero-trust environment. For smaller organisations, due diligence in cyber practices are needed including regular patching of systems and software updates.  The panel also noted the importance of leveraging emerging technologies to ensure that systems and networks are safe and secure. This includes the utilisation of AI-powered tools to streamline threat intelligence and incident response, which in turn enables effective detection of potential vulnerabilities and mitigation of cyber risks.

2. Integrating Cybersecurity into Organisational Culture

The experts, however, stressed that processes and technologies will not magically protect a company’s data.  Integrating cybersecurity principles and practices into the organisation’s culture is key. One best practice is to foster collaboration and knowledge-sharing across departments to ensure a holistic approach to cybersecurity. This includes various teams from finance, legal, public affairs, operations, etc. Furthermore, motivating users within the organisation to enhance their cybersecurity awareness is crucial, with an emphasis on the importance of the individual in the cyber defence link. In addition, strengthening the third-party or vendor assessment mechanisms also protects the organisations from supply chain attacks. This means that cybersecurity as a culture should not only be developed with internal teams, but also teams that will be onboarded or connected to the same network. 

3. Prioritise People-Centric Approaches

Recognizing that cybersecurity is not solely the responsibility of leaders or the IT department, the panel emphasised the importance of empowering everyone in the company to take cybersecurity as a responsibility. Organisations should invest in tailored cybersecurity awareness and training programs designed for different roles within the organisation. Continuous upskilling and adaptation were highlighted as essential, with experts advocating for continuous learning to stay abreast of evolving threats. The discussion delved deeper into implementing a combination of classroom, simulation-based, and experiential learning methods to enhance employees’ cybersecurity knowledge and skills. Furthermore, organisations should encourage open dialogue and collaboration between leaders, the cybersecurity team and users as means to collectively strengthen cybersecurity defences.

Download Report

Download Report

Latest Updates

Latest Updates​

Keep pace with the digital pulse of Southeast Asia!

Never miss an update or event!

Mouna Aouri

Programme Fellow

Mouna Aouri is an Institute Fellow at the Tech For Good Institute. As a social entrepreneur, impact investor, and engineer, her experience spans over two decades in the MENA region, South East Asia, and Japan. She is founder of Woomentum, a Singapore-based platform dedicated to supporting women entrepreneurs in APAC through skill development and access to growth capital through strategic collaborations with corporate entities, investors and government partners.

Dr Ming Tan

Senior Fellow & Founding Executive Director

Dr Ming Tan is Senior Fellow at the Tech for Good Institute; where she served as founding Executive Director of the non-profit focused on research and policy at the intersection of technology, society and the economy in Southeast Asia. She is concurrently a Senior Fellow at and the Centre for Governance and Sustainability at the National University of Singapore and Advisor to the Founder of the COMO Group, a Singaporean portfolio of lifestyle companies operating in 15 countries worldwide. Ming was previously Managing Director of IPOS International, part of the Intellectual Property Office of Singapore. Prior to joining the public sector, she was Head of Stewardship of the COMO Group.


Ming also serves on the boards of several private companies, Singapore’s National Volunteer and Philanthropy Centre, Singapore Network Information Centre (SGNIC), and on the Digital and Technology Advisory Panel for Esplanade–Theatres on the Bay, Singapore’s national performing arts centre. Her current portfolio spans philanthropy, social impact, sustainability and innovation.