Singapore businesses & digital resilience

Singapore businesses & digital resilience


On 19 July 2024, a single faulty software update from the cybersecurity firm CrowdStrike took roughly 8.5 million Windows machines offline worldwide. In Singapore, the fallout reached bank counters and Changi Airport, and it was serious enough that the Ministry of Digital Development and Information was later asked in Parliament how the country could avoid leaning so heavily on a small handful of technology providers. Nobody had been hacked. One supplier pushed one bad file, and the disruption rippled straight through everyone who depended on it.

That is the uncomfortable shape of modern risk, and it is the backdrop to a new Economist Impact report, Resilience by Design: Building Connected Ecosystems for the Age of Disruption, supported by Telstra International. The study surveyed more than 1,400 senior executives across seven industries and 11 APAC markets, with comparative benchmarks from the United States, United Kingdom and Germany.

  1. 1. A ranking built on strength, exposed by execution
  2. 2. The leadership problem is not awareness; it is ownership
  3. 3. Why ticking the compliance box is not enough
  4. 4. The weakest link starts at the front door
  5. 5. What “resilience by design” actually means
  6. 6. Training for the day the plan breaks
  7. 7. AI and hybrid work raise the stakes
  8. 8. What closing the gap looks like

The research scores capability across five pillars using a Digital Resilience Barometer: 

  • The external enabling environment
  • Technology and infrastructure
  • Risk management
  • Leadership
  • Workforce and cultural agility

Singapore came first overall, first in risk management, and first in workforce and cultural agility. It placed second in technology and infrastructure. Then the picture changes. It sat sixth in the external enabling environment and tenth in leadership.

A ranking built on strength, exposed by execution

Charles Ross

Charles Ross, Head of Policy and Insights, APAC at Economist Impact.

Photo: Economist Impact

Charles Ross, Head of Policy and Insights, APAC at Economist Impact, does not see the top ranking and the patchy results as a contradiction. He sees maturity.

“Singapore scores highly because its foundations, risk management, infrastructure and enterprise capability are strong,” he said. “But resilience is ultimately tested in execution, not design.” What he means here is that an organisation’s resilience is not proven by how good its plans, frameworks or systems look on paper. It is proven when something actually goes wrong, and people have to respond under pressure.

The data bears that out. Only around 30% of Singapore organisations said their responses to recent disruptions went mostly or exactly to plan. When they fell short, Ross said, the reasons were consistent: 

  • Gaps in scenario planning 
  • Weak coordination across teams. 

Plans tend to assume neat, linear events, whereas real incidents are dynamic, fast-moving and cross-functional.

“Singapore is ahead in capability, but still subject to the same execution gap,” he said. “Resilience is less about having a plan, and more about how organisations adapt when that plan inevitably breaks.”

The scenario-planning weakness is not a rounding error, either. Singapore sat 14 percentage points above the survey average in citing inadequate scenario planning for when responses to threats do not go as expected. For a market that prides itself on preparedness, being an outlier on that point is worth noting.

The leadership problem is not awareness; it is ownership

Singapore business leaders recognise the importance of resilience

Leaders in Singapore recognise the importance of resilience.

Photo: Pexels

Scoring tenth in leadership is the result that tends to surprise people, and Ross is clear that it reflects how organisations behave, not how the country is governed.

“Senior leaders in Singapore clearly recognise the importance of resilience, but responsibility tends to sit within a single function rather than being shared across the enterprise,” he said. Leadership in resilience, he added, needs active governance and cross-functional alignment, and that is where Singapore looks less mature despite its strong operational base.

The numbers bear out the facts. 71 percent of Singapore respondents said their boards or executive committees do not regularly review the effectiveness of digital resilience plans. Across APAC, only 28 percent of boards review resilience regularly, and fewer still convert those discussions into action. When ownership concentrates in one function, usually IT, the report notes, digital resilience gets treated as a cybersecurity problem rather than a board-level strategic priority. Forty percent of Singapore organisations cited internal siloes as a key reason their responses fail. Ross’s own framing of why that matters is blunt:

“Disruption is inherently cross-functional. It affects operations, technology, communications and leadership simultaneously. When resilience is owned by a single function, coordination breaks down.” 

Roary Stasko, CEO of Telstra International, recognises the 71 percent figure from his own conversations with business leaders.

“Broadly, this aligns with what we often see across many markets,” he said. “Digital resilience is recognised as important, and it is discussed at senior levels, but the depth and cadence of review and testing vary significantly by organisation.” 

The board conversations that actually move the needle, he said, are the practical ones: decision rights under pressure, clarity of escalation, coordination across teams and partners, and whether scenario exercises reflect the realities of today’s ecosystem dependencies. 

Progress, in his experience, comes when board attention shifts towards regular testing that builds preparedness over time.




Read Full Article At Source

Share. Save. Don't Miss The Buzz: XFacebookRedditLINETelegramWhatsAppGmail