Term · 28. International Regulations

CSA CCoP (Cybersecurity Code of Practice for CII, Singapore) CSA CCoP

Standard Source: CSA CCoP 2.0

Personal Data Identity Security PAM Standards CSA CCoP

Definition

Singapore Cyber Security Agency's mandatory Code of Practice for Critical Information Infrastructure (CII) operators across 11 sectors: energy, water, banking, healthcare, transport, infocomm, media, security & emergency, aviation, land transport, maritime. Prescribes baseline cybersecurity controls including identity & access management, privileged access controls, audit logging, incident reporting to CSA within 2 hours of awareness.

Synonyms

CCoP 2.0
Singapore CII Code

Application: Mandatory for CII owners designated under the Cybersecurity Act 2018. IDM/IAM impact: identity governance for all access to CII systems, MFA for remote and privileged access, PAM with session recording, regular access reviews (at least quarterly), separation of duties, breach detection capabilities tied to identity anomalies.

Sources

Cyber Security Agency of Singapore — Cybersecurity Act & CCoP primary source

Related terms

← Back to glossary · Open in main list