CSA and Dragos, Inc. Sign Memorandum of Understanding to Strengthen Singapore’s Capabilities in Operational Technology Cybersecurity

Published on 22 Aug 2023

The Cyber Security Agency of Singapore (CSA) has announced the signing of a three- year Memorandum of Understanding (MOU) with Dragos, Inc., covering information-sharing, capacity and capability-building for Operational Technology (OT) cybersecurity to help Singapore defend against cyber-attacks.  The MOU was signed by Mr David Koh, CSA’s Chief Executive and Mr Robert M. Lee, Dragos’s Chief Executive Officer as part of the Operational Technology Cybersecurity Expert Panel (OTCEP) Forum 2023 on 22 August 2023, at Resorts World Convention Centre.

2. As cyber threats evolve and become more sophisticated, it is vital that Singapore adopts a proactive stance to counter these threats. CSA is working closely with Critical Information Infrastructure (CII) owners and sector leads to enhance the cyber resiliency of our CII sectors as part of Singapore’s OT Cybersecurity Masterplan1 . OT refers to technologies involving interconnected devices and computers for the monitoring and control of physical processes. It is deployed in industrial sectors such as energy, manufacturing, transportation and water. The MOU will support CSA’s efforts in enhancing Singapore’s national cyber defence capabilities, in particular, architecture consultancy, cyber risk assessments and incident response leveraging Dragos Platform technology. The areas of collaboration will cover the following:

  1. Threat intelligence: Sharing of threat intelligence and expertise in the area of threat detection/hunting
  2. Consultancy and risk assessment: Conducting architecture reviews and cyber risk assessments in OT CII sectors
  3. Incident response: Contributing to Singapore’s national/sectoral OT cybersecurity incident response framework by augmenting CSA and CII sector leads’ efforts to deal with sophisticated OT cyber-attacks requiring niche or deep capabilities
  4. Information exchange and training:  Providing a platform to exchange ideas, insights and expertise, such as through talent development programmes and fostering alignment with industry best practices

3. This MOU will also provide CII sectors with access to expert knowledge and opportunities for local cybersecurity companies to work collaboratively with Dragos Inc.

4. Mr David Koh, Commissioner of Cybersecurity and Chief Executive of CSA, said: “Industrial control systems, or Operational Technology (OT) systems, are increasingly connected to the Internet, because of reasons of productivity or efficiency. This means a successful cyber-attack can have cyber-physical effects – it can disrupt the delivery of critical services, or lead to serious real-world consequences. CSA has established this partnership with Dragos Inc to build up Singapore’s technological capabilities in incident response and threat detection for OT systems.  This partnership will also enable our local ecosystem to strengthen its capabilities in OT cybersecurity.” 

5. Mr Robert M. Lee, CEO and Co-Founder of Dragos, said: “As a world leader in cybersecurity, Singapore is not only helping infrastructure owners and operators protect their systems, but also sending a signal to other countries about the immediate need to secure operational technology. Through the years Dragos has valued the opportunity to advise the Singapore government on cybersecurity best practices. Now through our partnership with CSA, we look forward to further supporting Singapore’s cyber defence and resilience through OT cybersecurity expertise, services, and technology for increasingly connected industrial systems.”



[1] The OT Cybersecurity Masterplan serves as a strategic blueprint to guide Singapore’s efforts to foster a resilient and secure cyber environment for Singapore’s critical sectors, improve cross-sector response to mitigate cyber threats in the OT environment and strengthen partnerships with stakeholders.


About the Cyber Security Agency of Singapore

Established in 2015, the Cyber Security Agency of Singapore (CSA) seeks to keep Singapore’s cyberspace safe and secure to underpin our Nation Security, power a Digital Economy and protect our Digital Way of Life. It maintains an oversight of national cybersecurity functions and works with sector leads to protect Singapore’s Critical Information Infrastructure. CSA also engages with various stakeholders to heighten cyber security awareness, build a vibrant cybersecurity ecosystem supported by a robust workforce, pursue international partnerships and drive regional cybersecurity capacity building programmes. 

CSA is part of the Prime Minister’s Office and is managed by the Ministry of Communications and Information. For more news and information, please visit www.csa.gov.sg.

About Dragos Inc

Dragos has a global mission to safeguard civilization from those trying to disrupt the industrial infrastructure we depend on every day. The Dragos Platform offers the most effective industrial cybersecurity technology, giving customers visibility into their ICS/OT assets, vulnerabilities, threats, and response actions. The strength behind the Dragos Platform comes from our ability to codify Dragos’s industry-leading OT threat intelligence, and insights from the Dragos services team, into the software. Our community-focused approach gives you access to the largest array of industrial organizations participating in collective defense, with the broadest visibility available.  

Our solutions protect organizations across a range of industries, including electric, oil & gas, manufacturing, building automation systems, chemical, government, water, food & beverage, mining, transportation, and pharmaceutical. Dragos is privately held and headquartered in the Washington, DC area with regional presence around the world, including Canada, Australia, New Zealand, Europe, and the Middle East.



Report a Cybersecurity Incident

SingCERT encourages the reporting of cybersecurity incidents as it enables us to better understand the scope and nature of cyber incidents in Singapore. This will enable us to issue alerts or advisories on relevant threats, and assist a broader range of individuals and organisations.
Report Incident