SINGAPORE: Several changes will be made to enhance the governance and organisational structures across Singapore’s public healthcare institutions and IHiS, including splitting the dual role currently held by a key executive, who is both the chief information security officer (CISO) at the Ministry of Health (MOH) and the director of cybersecurity governance at IHiS.
This was announced by Health Minister Gan Kim Yong in Parliament on Tuesday (Jan 15), following recommendations by a Committee of Inquiry (COI) into the cyberattack on SingHealth, which resulted in the biggest data breach in Singapore.
The four-member COI was tasked to establish the events and contributing factors leading to the cyberattack on SingHealth’s patient database system in which 1.5 million patients’ non-medical personal data were stolen.
READ: SingHealth COI report: 16 recommendations put forward in dealing with IT security incidents
READ: SingHealth COI: Possible conflicts of interest raised as IHiS leaders had roles in Health Ministry
One of the COI’s recommendations was for an enhanced security structure across IHiS and the public healthcare institutions.
