Certification for the Cyber Trust mark
CSA's Cyber Trust mark offers 3-year certification with annual audits, funding support up to $3,600, and benefits including insurance discounts.

Raise the bar for cybersecurity excellence
In an era where cyber threats are increasingly sophisticated, organisations must go beyond basic cybersecurity to safeguard their digital assets. CSA has enhanced the Cyber Trust mark, empowering organisations to address cyber risks not just in traditional IT systems, but also in Cloud Security, Operational Technology (OT) Security, and AI Security. This enhancement enables businesses to stay ahead of emerging threats and reinforce digital trust among stakeholders.
The Cyber Trust mark is suited for organisations with more extensive digitalised business operations. These organisations are likely to have higher risk levels which require them to invest in expertise and resources to manage and protect their IT infrastructure and systems. The Cyber Trust mark adopts a risk-based approach to guide organisations to understand their risk profiles and identify relevant cybersecurity preparedness areas required to mitigate these risks.
The Cyber Trust mark serves as a mark of distinction for organisations to prove that they have put in place good cybersecurity practices and measures that are commensurate with their cybersecurity risk profile.
Why get Cyber Trust certified?
1. Establish cybersecurity leadership
Cyber Trust certification is the benchmark for organisations with advanced cybersecurity capabilities, positioning them as industry leaders in security excellence.
2. Strengthen security and resilience
Cyber Trust provide a structured framework to fortifying your cybersecurity posture across IT, cloud, OT, and AI systems, reducing exposure to evolving cyber threats.
3. Build trust and market reputation
Certification reinforces trust with customers, partners, and investors, showcasing a proactive commitment to cybersecurity and risk management.
4. Gain a competitive advantage
With cyber resilience becoming a key business differentiator, Cyber Trust certified organisations stand out as trusted entities, giving them an edge in securing partnerships, customers, and business opportunities.
5. Ensure compliance with minimum cybersecurity requirements
The enhanced Cyber Trust certifications align with international cybersecurity best practices, helping organisations meet cybersecurity requirements and/or compliance obligations effectively.
6. Future-proof your business
As cyber threats evolve, the enhanced Cyber Trust certifications provide guidance on emerging risks, ensuring that your organisation remains secure and resilient in the digital economy.
Funding support for the Cyber Trust mark certification
To encourage organisations to adopt the Cyber Trust mark, CSA has worked with the appointed certification bodies to offer funding support for Cyber Trust mark certification. Organisations that are successfully certified can enjoy the following funding support, which will be deducted from the certification fees charged by the certification bodies:
Cyber Trust (2025) – Quantity of end-points and its corresponding maximum level of funding support from CSA
Table caption
Quantity of End-points | Cyber Trust (2025) Maximum Level of Funding Support from CSA[1] To be deducted from the certification fees charged by certification bodies (Applicable only from now to 6 February 2028) | |
Classical cybersecurity | Cloud security, OT security or AI security[2] | |
1 - 10 | $1,375 | $225 |
11 - 20 | $1,375 | $225 |
21 - 50 | $1,625 | $225 |
51 - 100 | $1,875 | $225 |
101 - 200 | $2,250 | $450 |
[1] The following considerations applies to the funding support:
Funding support for Cyber Trust mark is applicable only for the first successful Cyber Trust certification per organisation
Only SMEs and Non-Profit Organisations (NPO) incorporated in Singapore are eligible
Organisations shall submit their completed application forms to their selected certification bodies.
[2] The funding support amount is applicable for each digital technology pillar such as cloud security, OT security and AI security.
Which tier of Cybersecurity Preparedness does my organisation belong to?
There are five Cybersecurity Preparedness tiers, with 10 to 22 domains under each tier. Organisations can use the Cyber Trust mark risk assessment framework to identify which Cybersecurity Preparedness tier is more suitable for your needs.
Download the infographic on Cyber Trust mark.

Certification duration and mode of assessment
Cyber Trust certification is valid for a duration of 3 years, with a yearly audit. The mode of assessment will involve both review and verification of documents, as well as implementation and effectiveness. The organisation’s certification audit will be carried out by an independent assessor from the appointed certification body.
Certification charges and time needed for certification may differ according to the scope of certification. Organisations may visit the websites of the certification bodies to find out more.
The certification process is undertaken by certification bodies that have been appointed by CSA. Organisations may approach any of the certification bodies listed below.
Table of certification bodies appointed by CSA.
Table caption
Certification Body | Cyber Essentials | Cyber Essentials | Cyber Trust
| Contact Person | Contact number | Email address |
BSI Group Singapore Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • AI security | Appointed for: • Cyber Essentials for ICT Vendors | Appointed for: • Classical cybersecurity • Cloud security • AI security | Mona Bajani | 6270 0777 8127 3956 | |
Bureau Veritas Quality Assurance Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • AI security | Appointed for: • Cyber Essentials for ICT Vendors | Appointed for: • Classical cybersecurity • Cloud security • AI security | Mr Hemant Soitkar | 9645 3654 | |
Vincent Chng | 8448 8585 | |||||
Juliana Kelly | 9643 2348 | |||||
EPI Certification Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Appointed for: • Cyber Essentials for ICT Vendors • Cyber Essentials for HIA Entities • Cyber Essentials for HIMS Vendors | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Low Liang Ngien | 8823 3347 | |
Dalwara Singh | 9667 4451 | |||||
May Cheow | 8939 8323 | |||||
exida Asia Pacific Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Appointed for: • Cyber Essentials for ICT Vendors | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Jack Gao | 6222 5160 | |
Guardian Independent Certification Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Appointed for: • Cyber Essentials for ICT Vendors • Cyber Essentials for HIA entities • Cyber Essentials for HIMS Vendors | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Tan Sim Bee | 6749 6702 | |
Vinod Shivaprakash | 8112 7646/ 6749 6702 | |||||
ISOCert Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Appointed for: • Cyber Essentials for ICT Vendors • Cyber Essentials for HIA entities • Cyber Essentials for HIMS Vendors | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Saju S Pillai | 9105 4718 | |
Setsco Services Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • AI security | Appointed for: • Cyber Essentials for ICT Vendors • Cyber Essentials for HIA entities • Cyber Essentials for HIMS Vendors | Appointed for: • Classical cybersecurity • Cloud security • AI security | Cindy Villafane | 9428 3210 | |
Elean Kwek | 9738 9085 | |||||
Dilo | 8277 1108 | |||||
Ivy Artangga | 9109 0243, 6895 2245 | |||||
Mae Dela Cruz | 9451 4718 | |||||
SGS International Certification Services Singapore Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • AI security | NIL | Appointed for: • Classical cybersecurity • Cloud security • AI security | Lee Lai Mei | 6379 0136 | |
Liew Sook Ting | 6379 0149 | |||||
Rosette | 8972 6025 | |||||
SOCOTEC Certification Singapore Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | NIL | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Ms. Agnes Wong | 6499 4708 | |
Ms. Salwa Halid | 6299 9001 6499 4707 | |||||
Transpacific Certifications (Singapore) Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • AI security | Appointed for: • Cyber Essentials for ICT Vendors | Appointed for: • Classical cybersecurity • Cloud security • AI security | Carys Lim | 93395879 | |
Eunice Khoo | 89321388 | |||||
TÜV NORD (Thailand) Ltd (Singapore Branch) | Appointed for: • Classical cybersecurity | Appointed for: • Cyber Essentials for ICT Vendors | Appointed for: • Classical cybersecurity | Snow Naw | 6904 6700 9061 0232 | |
Irene Kua | 9383 7006 | |||||
TÜV SÜD PSB Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Appointed for: • Cyber Essentials for ICT Vendors • Cyber Essentials for HIA entities • Cyber Essentials for HIMS Vendors | Appointed for: • Classical cybersecurity • Cloud security • OT security • AI security | Mariejorn Almazan Avila | 9889 3163 | |
Tri Nur Amalia | 8858 6315 | |||||
URS Far East Pte Ltd | Appointed for: • Classical cybersecurity • Cloud security • AI security | Appointed for: • Cyber Essentials for ICT Vendors • Cyber Essentials for HIA entities • Cyber Essentials for HIMS Vendors | Appointed for: • Classical cybersecurity • Cloud security • AI security | Yap PY | 6297 3630 | |
Su Weiqi | 9457 8100 |
Notes:
ICT – InfoComm Technology
HIA – Health Information Act
HIMS – Health Information Management System
CISO as-a-Service (CISOaaS) Support
If you have already implemented good cyber hygiene, or already achieved CSA Cyber Essentials mark, you are ready to progress towards adopting a risk-based approach to cybersecurity.
Develop a cybersecurity health plan tailored for your needs and work towards national cybersecurity certification such as attaining CSA’s Cyber Trust mark.
Develop your cybersecurity health plan with your appointed CISOaaS consultant now.
Cyber Trust
Organisations seeking certification may refer to the following:
(Note: Documents were last updated in April 2025)
Enhanced Cyber Trust (2025) – Covers classical cybersecurity, cloud security, OT security and AI security

Cyber Trust (2025) mark certification document [PDF, 1.15MB]
Cyber Trust (2025) mark – Self-assessment template [XLSX, 188 KB]
Mapping between Cyber Trust (2025) mark and ISO/IEC 27001:2022 [PDF, 767 KB]
The Cyber Trust (2025) mark is published as Singapore Standards 712 (SS 712) under the Singapore Standardisation Programme. Organisations may obtain a copy of SS 712:2025 “Tiered cybersecurity standards for organisations” from the Singapore Standards e-shop.b. How to get certified
The certification process is undertaken by certification bodies that have been appointed by CSA. Organisations may select any of the following certification bodies, please click here for contact details.

Cloud Security for Organisations
Access our Cloud Security Companion Guides, developed in partnership with Cloud Security Alliance, provide comprehensive frameworks for organisations implementing cloud security measures aligned with Cyber Essentials standards.

Added benefits for certified organisations
Click here to read more about added benefits for certified organisations.
