AI-Enabled Capabilities and Collaboration with Industry Elevate Defence of Critical Infrastructure at National Cyber Defence Exercise

1.                  The Critical Infrastructure Defence Exercise (CIDeX), co-organised by the Digital and Intelligence Service (DIS) and the Cyber Security Agency of Singapore (CSA) is being held from 11 to 14 November at the Singapore Institute of Technology. Minister for Defence Mr Chan Chun Sing and Minister for Digital Development and Information Mrs Josephine Teo visited the exercise site today. During the visit, they were briefed on the conduct of CIDeX 2025 and on how CIDeX strengthens inter-agency collaboration to detect and tackle cyber security threats. Ministers also observed demonstration tools developed in-house by the Singapore Armed Forces’ Cyber Defence Test and Evaluation Centre.

2.                  CIDeX focused on training and strengthening the capabilities of the 11 critical sectors to detect and deal with cyber threats to Information Technology (IT) and Operational Technology (OT)^[1] networks that control the operations of Critical Information Infrastructure (CII). The exercise is supported by iTrust^[2] Singapore University of Technology and Design (SUTD) and the National Cybersecurity Research & Development Laboratory. CIDeX is part of the National Cyber Exercise Programme, which is driven by the CSA.

3.                  CIDeX 2025 involves over 160 participants from the DIS, CSA and 32 other organisations^[3], and for the first time, participation from all 11 CII sectors. During the exercise, participants from the Blue Teams, comprising representatives from participating organisations, defended their respective digital infrastructure against live simulated cyber-attacks launched by a composite exercise planning and control team made up of CSA, DIS, Defence Science and Technology Agency, GovTech, IMDA and LTA personnel. Exercise scenarios involved attacks on both the IT networks and testbeds that aim to disrupt operations, such as compromising a 5G network, and disrupting power supply and rail operations. This year’s exercise scenarios were developed with the use of an Artificial Intelligence (AI) tool, which provided suggested attack pathways to engineer potential attack scenarios and intrusion vectors. These scenarios were further built on and refined by the planning and control team to shape realistic simulations that mimic attacks by malicious threat actors.

4.                  Private sector partners including Singtel, and global technology companies such as AWS, Check Point Software Technologies, Dragos, Fortinet, Google Cloud and Splunk were closely involved in the exercise preparations. They provided input on the cyber-attack scenarios, enhancing the simulated attacks’ realism for higher learning value for the participants, and contributed training expertise to the six-day hands-on training programme prior to the exercise, to develop and hone participants’ cyber defence competencies.

5.                  On the sidelines of CIDeX 2025, the DIS and SUTD also launched the Cyber5G testbed. Built with telco-grade components, the Cyber5G testbed allows academia and operational partners to conduct threat modelling and cyber training for the telecommunications sector. The testbed enables research on real-world attack vectors that threaten national infrastructure, for the development of robust defensive and mitigation strategies.

6.                  CIDeX 2025 provided participants with the opportunity to sharpen their instincts and technical competencies and share expertise and perspectives across organisations. Commander Defence Cyber Command/Defence Cyber Chief Colonel Clarence Cai said, “As national cyber defenders, we are also embracing the use of AI to enhance cyber defence, in keeping pace with global cyber threats. In collaboration with our cyber partners, the SAF is developing cyber-AI experimentation and operationalisation capabilities to apply transformative innovations to cyber defence. These capabilities elevate our operations and deploy the expertise of our skilled cyber talent and national servicemen where it matters the most.”

7.                  Deputy Chief Executive (National Cyber Resilience) Edward Chen of CSA said, “Cyber threats to Singapore are real, complex, and rapidly evolving. Large-scale exercises like CIDeX give our defenders the realistic training to hone their craft and stay ahead of increasingly sophisticated cyber threat actors. We are appreciative of this strong partnership with the SAF to build Singapore’s collective cyber resilience.”

[1] OT refers to hardware and software that monitor and control devices, processes and infrastructure. These include Industrial Control Systems, Supervisory Control and Data Acquisition systems, safety instrumented systems, and Programmable Logic Controllers.

[2] iTrust is a multidisciplinary research centre located at the Singapore University of Technology and Design  that was jointly established by SUTD and the Ministry of Defence in 2012.

[3] The 32 participating organisations , are: Changi Airport Group (Singapore) Pte Ltd, Citibank Singapore, Energy Market Authority, Government Technology Agency (GovTech), Home Team Science and Technology Agency, Infocomm Media Development Authority (IMDA), J.P. Morgan, Land Transport Authority (LTA), Maritime and Port Authority of Singapore, Mediacorp Pte Ltd, M1 Limited, Monetary Authority of Singapore, National Electronic Payment Services Pte Ltd, OCBC Bank, PSA Singapore, Public Utilities Board, Sembcorp Industries Ltd, Senoko Energy Pte Ltd, Singapore Airlines Limited, Singapore Civil Aviation Authority, Singapore LNG Corporation Pte Ltd, Singapore Mass Rapid Transit, Singapore Police Force Singapore Bus Services Transit Ltd, Singapore Press Holdings Media Trust, Singapore Telecommunications Limited, SingHealth, SP Group, SP Telemedia Ltd, StarHub Ltd, Tuas Power Ltd, and United Overseas Bank Limited.