Page 68 - NCS Sales Manual 2018.pdf
P. 68
CYBER SECURITY
PROFESSIONAL SERVICES
Solutions / Services Benefits for Customers Top Strikes Hunting / Farming Terrain NCS Contact Person
(Prospecting Questions) (Customer Profile)
Governance, Risk and • Maintain compliance against • Do you require any 3rd party Target Industry David Tan
Compliance in-scope IT Security Policy or or independent security Senior Manager
relevant industry standards reviewer for your security • Critical Infocomm Business Development
compliance needs? Infrastructure (CII) +65 9695 1985
• Manage IT security risks tatweet@ncs.com.sg
pertaining to in-scope • Do you have plans in setting i. Cybersecurity audits
systems or business up a data centre or energy / and risk assessments
functions utility plant? of CII under Section 15 of
Cybersecurity Bill
• Attain ISO27001 certification
with facilitation • Ministries and Statutory
Board
• OT Security Audit and Risk
Assessment against CP8, • Energy / Utilities
NIST 800-82, 62443, NERC i. Typically required prior
are available to commissioning of data
centre or energy / utility
plant
Security Assessment • Minimise / Eliminate attack • Do you currently or plan • Ministries and Statutory
surfaces / vulnerabilities to test your environment Board
of the in-scope networks, for known or exploitable i. Required during system
applications and databases vulnerabilities? pre-commission, at least
• Vulnerability Assessment for • How often do you conduct annually and any major
OT environment is available such tests? changes
• Financial Institutions
i. Regular Vulnerability
Assessment
ii. Annual Penetration
Test for Internet-facing
systems
• Energy / Utilities
i. Typically required prior
to commissioning and
annually
68 NCS Sales Manual | Cyber Security | 2018
