Table of contents exchange of letters with the minister executive summary

PART V – INCIDENT RESPONSE AFTER 10 JULY 2018 ............................... 188

Download 5.91 Mb.

View original pdf

Page	3/329
Date	27.11.2023
Size	5.91 Mb.
	#62728

1 2 3 4 5 6 7 8 9 ... 329

Report of the COI into the Cyber Attack on SingHealth 10 Jan 2019

PART VI – KEY FINDINGS OF THE COMMITTEE ON TORS 1 AND 2 . 209 PART VII – RECOMMENDATIONS BY THE COMMITTEE ON TORS 3, 4

PART V – INCIDENT RESPONSE AFTER 10 JULY 2018 ............................... 188
31
Introduction to this Part ............................................................................... 189 Joint investigation and remediation by IHiS and CSA ................................ 189 The public announcement and patient outreach and communications ........ 196 Additional measures taken by CSA ............................................................. 206
PART VI – KEY FINDINGS OF THE COMMITTEE ON TORS #1 AND #2 . 209
PART VII – RECOMMENDATIONS BY THE COMMITTEE ON TORS #3, #4,
AND #5 ...................................................................................................................... 213
35
Preamble ...................................................................................................... 221 Recommendation #1: An enhanced security structure and readiness must be adopted by IHiS and public health institutions ............................................ 235 Recommendation #2: The cyber stack must be reviewed to assess if it is adequate to defend and respond to advanced threats ................................... 249 Recommendation #3: Staff awareness on cybersecurity must be improved to enhance capacity to prevent, detect, and respond to security incidents ....... 269 Recommendation #4: Enhanced security checks must be performed, especially on CII systems ............................................................................ 279 Recommendation #5: Privileged administrator accounts must be subject to tighter control and greater monitoring ......................................................... 298 Recommendation #6: Incident response processes must be improved for more effective response to cyber attacks .............................................................. 313 Recommendation #7: Partnerships between industry and Government to achieve a higher level of collective cybersecurity ....................................... 331

43
Recommendation #8: IT security risk assessments and audit processes must be treated seriously and carried out regularly .............................................. 340 Recommendation #9: Enhanced safeguards must be put in place to protect electronic medical records ........................................................................... 354 Recommendation #10: Domain controllers must be better secured against attack ............................................................................................................ 368 Recommendation #11: A robust patch management process must be implemented to address security vulnerabilities .......................................... 372 47
Recommendaton #12: A software upgrade policy with focus on security must be implemented to increase cyber resilience ............................................... 381 Recommendation #13: An internet access strategy that minimises exposure to external threats should be implemented. 388 Recommendation #14: Incident response plans must more clearly state when and how a security incident is to be reported. 397 Recommendation #15: Competence of computer security incident response personnel must be significantly improved ................................................... 408 Recommendation #16: A post-breach independent forensic review of the network, all endpoints, and the SCM system should be considered ............ 421 Conclusion on recommendations ................................................................. 424

Download 5.91 Mb.

Share with your friends:

1 2 3 4 5 6 7 8 9 ... 329