{"id":65865,"date":"2026-07-03T20:21:03","date_gmt":"2026-07-03T12:21:03","guid":{"rendered":"https:\/\/sgbuzz.com\/?p=65865"},"modified":"2026-07-03T20:21:03","modified_gmt":"2026-07-03T12:21:03","slug":"singapore-businesses-digital-resilience","status":"publish","type":"post","link":"https:\/\/sgbuzz.com\/?p=65865","title":{"rendered":"Singapore businesses &#038; digital resilience"},"content":{"rendered":"<p><br \/>\n<\/p>\n<div xmlns:default=\"http:\/\/www.w3.org\/2000\/svg\">\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">On 19 July 2024, a single faulty software update from the cybersecurity firm CrowdStrike took roughly 8.5 million Windows machines offline worldwide. In Singapore, the fallout reached bank counters and Changi Airport, and it was serious enough that the <u>Ministry of Digital Development and Information<\/u> was later asked in Parliament how the country could avoid leaning so heavily on a small handful of technology providers. Nobody had been hacked. One supplier pushed one bad file, and the disruption rippled straight through everyone who depended on it.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">That is the uncomfortable shape of modern risk, and it is the backdrop to a new Economist Impact report, <u>Resilience by Design: Building Connected Ecosystems for the Age of Disruption<\/u>, supported by Telstra International. The study surveyed more than 1,400 senior executives across seven industries and 11 APAC markets, with comparative benchmarks from the United States, United Kingdom and Germany.<\/p>\n<section class=\"_expanded_lwxdk_22\"><button class=\"_title_lwxdk_1\"><\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Table of contents<\/p>\n<p><default:svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"18\" height=\"9\" fill=\"none\" stroke=\"currentColor\"><default:path d=\"M1 1L9 8L17 1\" stroke=\"currentColor\" stroke-width=\"2\" stroke-linecap=\"round\"\/><\/default:svg><\/button><\/p>\n<ol class=\"_list_lwxdk_28\">\n<li class=\"_listItem_lwxdk_71\">1. <!-- -->A ranking built on strength, exposed by execution<\/li>\n<li class=\"_listItem_lwxdk_71\">2. <!-- -->The leadership problem is not awareness; it is ownership<\/li>\n<li class=\"_listItem_lwxdk_71\">3. <!-- -->Why ticking the compliance box is not enough<\/li>\n<li class=\"_listItem_lwxdk_71\">4. <!-- -->The weakest link starts at the front door<\/li>\n<li class=\"_listItem_lwxdk_71\">5. <!-- -->What \u201cresilience by design\u201d actually means<\/li>\n<li class=\"_listItem_lwxdk_71\">6. <!-- -->Training for the day the plan breaks<\/li>\n<li class=\"_listItem_lwxdk_71\">7. <!-- -->AI and hybrid work raise the stakes<\/li>\n<li class=\"_listItem_lwxdk_71\">8. <!-- -->What closing the gap looks like<\/li>\n<\/ol>\n<\/section>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The research scores capability across five pillars using a Digital Resilience Barometer:\u00a0<\/p>\n<div class=\"_nested_1lq60_1\">\n<ul class=\"_listElement_wioo3_107\">\n<li class=\"_listItem_wioo3_112\">The external enabling environment<\/li>\n<li class=\"_listItem_wioo3_112\">Technology and infrastructure<\/li>\n<li class=\"_listItem_wioo3_112\">Risk management<\/li>\n<li class=\"_listItem_wioo3_112\">Leadership<\/li>\n<li class=\"_listItem_wioo3_112\">Workforce and cultural agility<\/li>\n<\/ul>\n<\/div>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Singapore came <b>first overall<\/b>, first in risk management, and first in workforce and cultural agility. It placed second in technology and infrastructure. Then the picture changes. It sat sixth in the external enabling environment and tenth in leadership.<\/p>\n<h2 id=\"a-ranking-built-on-strength-exposed-by-execution\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">A ranking built on strength, exposed by execution<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"Charles Ross\" loading=\"lazy\" sizes=\"auto\" width=\"2000\" height=\"1333\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2feffc177b50b33dc211f9f0d72cc54d6e77e5534c0f1dc0e3fdba989a20b447?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2feffc177b50b33dc211f9f0d72cc54d6e77e5534c0f1dc0e3fdba989a20b447?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2feffc177b50b33dc211f9f0d72cc54d6e77e5534c0f1dc0e3fdba989a20b447?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2feffc177b50b33dc211f9f0d72cc54d6e77e5534c0f1dc0e3fdba989a20b447?w=2000&amp;q=85 2000w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2feffc177b50b33dc211f9f0d72cc54d6e77e5534c0f1dc0e3fdba989a20b447?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5003750937734435;contain-intrinsic-size:2000px 1333px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">Charles Ross, Head of Policy and Insights, APAC at Economist Impact.<\/p>\n<p>Photo: Economist Impact<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Charles Ross, Head of Policy and Insights, APAC at Economist Impact, does not see the top ranking and the patchy results <b>as a contradiction<\/b>. He sees maturity.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cSingapore scores highly because its foundations, risk management, infrastructure and enterprise capability are strong,\u201d he said. \u201cBut<b> resilience is ultimately tested in execution<\/b>, not design.\u201d What he means here is that an organisation\u2019s resilience is not proven by how good its plans, frameworks or systems look on paper. It is proven when something actually goes wrong, and people have to respond under pressure.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The data bears that out. Only around 30% of Singapore organisations said their responses to recent disruptions went mostly or exactly to plan. When they fell short, Ross said, the reasons were consistent:\u00a0<\/p>\n<div class=\"_nested_1lq60_1\">\n<ul class=\"_listElement_wioo3_107\">\n<li class=\"_listItem_wioo3_112\">Gaps in scenario planning\u00a0<\/li>\n<li class=\"_listItem_wioo3_112\">Weak coordination across teams.\u00a0<\/li>\n<\/ul>\n<\/div>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Plans tend to assume neat, linear events, whereas<b> real incidents are dynamic<\/b>, fast-moving and cross-functional.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cSingapore is ahead in capability, but still subject to the same execution gap,\u201d he said. \u201cResilience is less about having a plan, and more about how organisations adapt when that plan inevitably breaks.\u201d<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The scenario-planning weakness is not a rounding error, either. Singapore sat 14 percentage points above the survey average in citing inadequate scenario planning for when responses to threats do not go as expected. For a market that prides itself on preparedness, being an outlier on that point is worth noting.<\/p>\n<h2 id=\"the-leadership-problem-is-not-awareness-it-is-ownership\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">The leadership problem is not awareness; it is ownership<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"Singapore business leaders recognise the importance of resilience\" loading=\"lazy\" sizes=\"auto\" width=\"1140\" height=\"760\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/88e7c0257e5f8b74e006fc09b8c4a55385226405c8fc3811889fbd8dd7577a94?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/88e7c0257e5f8b74e006fc09b8c4a55385226405c8fc3811889fbd8dd7577a94?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/88e7c0257e5f8b74e006fc09b8c4a55385226405c8fc3811889fbd8dd7577a94?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/88e7c0257e5f8b74e006fc09b8c4a55385226405c8fc3811889fbd8dd7577a94 1140w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/88e7c0257e5f8b74e006fc09b8c4a55385226405c8fc3811889fbd8dd7577a94?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5;contain-intrinsic-size:1140px 760px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">Leaders in Singapore recognise the importance of resilience.<\/p>\n<p>Photo: Pexels<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Scoring <b>tenth in leadership<\/b> is the result that tends to surprise people, and Ross is clear that it reflects how organisations behave, not how the country is governed.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cSenior leaders in Singapore clearly <b>recognise the importance of resilience<\/b>, but <b>responsibility tends to sit within a single function<\/b> rather than being shared across the enterprise,\u201d he said. Leadership in resilience, he added, needs active governance and cross-functional alignment, and that is where Singapore looks less mature despite its strong operational base.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The numbers bear out the facts. 71 percent of Singapore respondents said their boards or executive committees do not regularly review the effectiveness of digital resilience plans. Across APAC, only 28 percent of boards review resilience regularly, and fewer still convert those discussions into action. When ownership concentrates in one function, usually IT, the report notes, digital resilience gets treated as a cybersecurity problem rather than a board-level strategic priority. Forty percent of Singapore organisations cited internal siloes as a key reason their responses fail. Ross\u2019s own framing of why that matters is blunt:<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cDisruption is inherently cross-functional. It affects operations, technology, communications and leadership simultaneously. When resilience is owned by a single function, coordination breaks down.\u201d\u00a0<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Roary Stasko, CEO of Telstra International, recognises the 71 percent figure from his own conversations with business leaders.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cBroadly, this aligns with what we often see across many markets,\u201d he said. \u201cDigital resilience is recognised as important, and it is discussed at senior levels, but the depth and cadence of review and testing vary significantly by organisation.\u201d\u00a0<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The board conversations that actually move the needle, he said, are the practical ones: decision rights under pressure, clarity of escalation, coordination across teams and partners, and whether scenario exercises reflect the realities of today\u2019s ecosystem dependencies.\u00a0<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Progress, in his experience, comes when board attention shifts towards regular testing that builds preparedness over time.<\/p>\n<h2 id=\"why-ticking-the-compliance-box-is-not-enough\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">Why ticking the compliance box is not enough<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"Roary Stasko of Telstra International\" loading=\"lazy\" sizes=\"auto\" width=\"1140\" height=\"760\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2af300c765e920fe9e8964c45eeda88b775d366fc2704a3c414f66f342900ab5?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2af300c765e920fe9e8964c45eeda88b775d366fc2704a3c414f66f342900ab5?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2af300c765e920fe9e8964c45eeda88b775d366fc2704a3c414f66f342900ab5?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2af300c765e920fe9e8964c45eeda88b775d366fc2704a3c414f66f342900ab5 1140w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/2af300c765e920fe9e8964c45eeda88b775d366fc2704a3c414f66f342900ab5?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5;contain-intrinsic-size:1140px 760px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">Roary Stasko, CEO of Telstra International<\/p>\n<p>Photo: Telstra<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Both men keep returning to the same fault line where there is <b>a compliance-first mindset<\/b>, built for a slower era of risk. A compliance-first organisation may have the right policies, cyber controls, incident response documents and audit records, but still struggle when a real disruption happens. That is because compliance usually prepares a business for known risks and formal requirements. It does not always prepare teams for messy, fast-moving situations such as supplier outages, cloud failures, cyber incidents, system breakdowns or unclear decision-making under pressure.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">As Ross put it, \u201cCompliance is designed for known risks. It ensures organisations meet standards that have already been defined. Disruption today is shaped by unknown and rapidly evolving threats.\u201d<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Risk frameworks, he noted, remain heavily weighted towards cybersecurity and compliance, while broader exposures such as supplier failure or ecosystem breakdown are addressed less systematically. Compliance can set a baseline. It does not equip an organisation to think on its feet when conditions shift in a way no rulebook anticipated.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The spending pattern reflects the same instinct. 85 percent of Singapore organisations cited high compliance costs, yet 74 percent lacked full-time digital resilience teams and 60 percent lacked a dedicated budget for resilience initiatives. Ross is careful not to read that as simple overspending on compliance, though.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cThe picture is more nuanced,\u201d he said. In Singapore, only 35 percent of organisations emphasised compliance, against roughly 91 percent prioritising cybersecurity and about 74 percent focusing on business continuity, with recovery speed trailing at 30 percent.\u00a0<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">He added:<\/p>\n<div class=\"_nested_1lq60_1\">\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cThe real gap lies elsewhere. Far fewer organisations invest in capabilities such as adaptability or vendor risk management. These are the areas that tend to be deprioritised.\u201d<\/p>\n<\/div>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The problem, in other words, is not too much compliance. It is an imbalance, occurring when organisations are well-drilled for known, immediate risks and underprepared for complex, interconnected ones.<\/p>\n<h2 id=\"the-weakest-link-starts-at-the-front-door\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">The weakest link starts at the front door<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"Shared accountability needs to be across supply chains, cloud providers and third-party vendors.\" loading=\"lazy\" sizes=\"auto\" width=\"1140\" height=\"760\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/d961f83dd4143901a428c4a14c8fa6907dfcbeec7c2bec96942f8e1715f1937b?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/d961f83dd4143901a428c4a14c8fa6907dfcbeec7c2bec96942f8e1715f1937b?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/d961f83dd4143901a428c4a14c8fa6907dfcbeec7c2bec96942f8e1715f1937b?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/d961f83dd4143901a428c4a14c8fa6907dfcbeec7c2bec96942f8e1715f1937b 1140w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/d961f83dd4143901a428c4a14c8fa6907dfcbeec7c2bec96942f8e1715f1937b?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5;contain-intrinsic-size:1140px 760px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">Shared accountability needs to be in place across the whole partner ecosystem.<\/p>\n<p>Photo: Pexels<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">For all of Singapore\u2019s strength inside its own systems, confidence collapses the moment operations cross into territory a company does not directly control, which is to say supply chains, cloud providers, and third-party vendors.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Only 22 percent of Singapore organisations reported genuine, first-hand insight into the digital resilience of their suppliers and partners. Stasko argues that this is not really a technology gap at all, saying:<\/p>\n<div class=\"_nested_1lq60_1\">\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cThe tools to monitor, assess and share resilience-related risk already exist. What often determines visibility is whether there is a clear mandate and a structured way to apply those tools across organisational boundaries. Without clear contractual rights, shared standards and agreed escalation mechanisms, organisations get stuck relying on self-reported assurances, which rarely deliver the depth of insight leaders actually want when something is going wrong. So the constraint is usually not a lack of technology, but the structure and accountability across the ecosystem.\u201d<\/p>\n<\/div>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Ross describes the same wall from the research side. Gaining real visibility into a partner\u2019s systems runs into commercial sensitivities, regulatory boundaries and technical complexity, so organisations fall back on periodic audits and certifications, \u201cwhich provide only a partial and static view\u201d. In an environment where a fault can cascade across interconnected systems within minutes, he said, that is simply not enough.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">This is where Stasko\u2019s preferred phrase, <b>shared accountability<\/b>, has to mean something concrete. In a mature partner agreement, he said, resilience expectations are explicit, responsibilities are clearly defined, and decision-making and escalation paths are agreed in advance. Partners do not just sign up to service levels; they align on how information will be shared in real time and how recovery will be coordinated across parties. In weaker arrangements, those roles stay vague and go unrehearsed, which slows everyone down at the exact moment speed matters most.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cShared accountability is ultimately about trust built through design and rehearsal,\u201d he said. In a hub economy, nothing stays local<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Singapore\u2019s exposure is amplified by what makes it valuable in the first place. It is a regional anchor for finance, trade, logistics, cloud platforms and multinational operations, which means a local disruption does not stay local.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cIn a hub economy, disruptions can create ripple effects across regional supply chains, cross-border operations and shared digital dependencies,\u201d Stasko said. The deciding factor is how well organisations actually understand those dependencies, and how fast they can coordinate a response across partners and markets. The research suggests many firms recognise Singapore\u2019s hub status in principle, but are still mapping and testing the full web of cross-ecosystem dependencies that matter to how they run.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The physical layer makes the point vivid. Through January and February 2025, <u>a cluster of subsea cable incidents around Taiwan<\/u>, several involving vessels with opaque ownership, put regional connectivity in the headlines and underlined how much of the digital economy rides on a finite number of cables on the seabed. Stasko notes that <u>2025 was a genuinely tough year for North Asia cable operators<\/u>, including Telstra, with elevated seismic activity, bad weather delaying repair work, and more vessel interactions straining cable operations and recovery efforts. The regional subsea environment does not help: shallow waters, dense shipping corridors, and some of the heaviest cargo and fishing activity in the world.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">What is needed is scale and redundancy. Stasko who used Telstra as an example, said its network was supported by a global footprint of more than 30 cable systems, with at least four separate cable landings in each of Singapore, Hong Kong and Japan. That diversity is the whole point: if one route fails, traffic has somewhere else to go.<\/p>\n<h2 id=\"what-resilience-by-design-actually-means\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">What \u201cresilience by design\u201d actually means<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"Disuption needs to be accepted.\" loading=\"lazy\" sizes=\"auto\" width=\"1140\" height=\"760\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/3560d4cd65e0a33e9015346a811e8430c88e0e14db7e81fbfb762b63092f76ea?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/3560d4cd65e0a33e9015346a811e8430c88e0e14db7e81fbfb762b63092f76ea?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/3560d4cd65e0a33e9015346a811e8430c88e0e14db7e81fbfb762b63092f76ea?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/3560d4cd65e0a33e9015346a811e8430c88e0e14db7e81fbfb762b63092f76ea 1140w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/3560d4cd65e0a33e9015346a811e8430c88e0e14db7e81fbfb762b63092f76ea?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5;contain-intrinsic-size:1140px 760px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">Resilience by design means recognising from day one that<b> <\/b>disruption is inevitable.<\/p>\n<p>Photo: Pexels<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The report\u2019s title of <b>Resilience by Design: Building Connected Ecosystems for the Age of Disruption<\/b>, is a thesis, and Stasko spells it out.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cResilience by design means recognising from day one that<b> disruption is inevitable<\/b>, and building networks and digital infrastructure to operate through it, not just to recover afterwards,\u201d he said.\u00a0<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">In practice, that means deliberately diversifying routes and providers, eliminating single points of failure, embedding automated failover and recovery, and ensuring systems keep running even when parts of the ecosystem are under stress. It also means designing for speed of recovery, because in a complex environment, planning for a single tidy scenario is wishful thinking.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Telecoms and infrastructure providers sit at a useful vantage point in all this, Stasko argues, because they own the connectivity layer that so many organisations depend on. That position can offer extra visibility and routing options when something breaks elsewhere, letting customers reroute around problems and recover faster rather than discovering a hidden dependency only after it has already failed.<\/p>\n<h2 id=\"training-for-the-day-the-plan-breaks\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">Training for the day the plan breaks<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"Execution is often where things go wrong.\" loading=\"lazy\" sizes=\"auto\" width=\"1140\" height=\"760\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/c6b9e27cbb641adc6a6457895f130220a260ab584bcb4854acc72a0b9d59076e?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/c6b9e27cbb641adc6a6457895f130220a260ab584bcb4854acc72a0b9d59076e?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/c6b9e27cbb641adc6a6457895f130220a260ab584bcb4854acc72a0b9d59076e?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/c6b9e27cbb641adc6a6457895f130220a260ab584bcb4854acc72a0b9d59076e 1140w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/c6b9e27cbb641adc6a6457895f130220a260ab584bcb4854acc72a0b9d59076e?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5;contain-intrinsic-size:1140px 760px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">Training to build team adaptability is often lacking.<\/p>\n<p>Photo: Pexels<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">If execution is where Singapore stumbles, training is part of the reason. The country is strong on the basics. 82 percent of organisations run upskilling programmes, and 85 percent run organisation-wide digital resilience training. But only 12 percent mandate the kind of training that builds team adaptability during an actual outage.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Ross has a clear read on why.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cMost organisations prioritise <b>structured training<\/b>, particularly in cybersecurity, data privacy and compliance, because these are easier to standardise and measure,\u201d he said.<b> Training for live disruption is harder<\/b>. It means simulating uncertainty, pressure and cross-functional decision-making, none of which fits neatly into a module. As a result, he said, just 17% of Singapore organisations mandate capabilities such as adaptability during outages or coordinated crisis response, \u201cyet these are precisely the skills that determine how effectively organisations respond when disruption unfolds in practice\u201d.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">This happens as most organisations are good at delivering formal training that can be packaged into modules, but less prepared to train people for messy, real-world disruption where judgement, coordination and adaptability matter.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">The same overconfidence shows up across the pillars. Organisations are<b> far more assured about the things they control directly<\/b>, internal systems and cybersecurity, than about the external enablers they merely rely on, such as communications networks, power supply and cross-sector collaboration. \u201cOrganisations, in effect, are risk-ready within their own walls, but less prepared for disruptions that cascade across systems, markets and partners,\u201d Ross said. Strong internal performance, he warns, can mask weaker ecosystem coordination.<\/p>\n<h2 id=\"ai-and-hybrid-work-raise-the-stakes\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">AI and hybrid work raise the stakes<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"The way we work will change things.\" loading=\"lazy\" sizes=\"auto\" width=\"1140\" height=\"760\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/dfc8a09f465341571e224bcd5fc1e9dbaa0c303d783fc15216e9a7b305ec0a78?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/dfc8a09f465341571e224bcd5fc1e9dbaa0c303d783fc15216e9a7b305ec0a78?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/dfc8a09f465341571e224bcd5fc1e9dbaa0c303d783fc15216e9a7b305ec0a78?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/dfc8a09f465341571e224bcd5fc1e9dbaa0c303d783fc15216e9a7b305ec0a78 1140w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/dfc8a09f465341571e224bcd5fc1e9dbaa0c303d783fc15216e9a7b305ec0a78?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5;contain-intrinsic-size:1140px 760px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">AI and hybrid work will reshape the resilience equation over the next few years.<\/p>\n<p>Photo: Pexels<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Two compounding factors sit over all of this. Ross expects AI and hybrid work to reshape the resilience equation over the next 12 to 24 months, and not only for the better.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cThey increase both capability and complexity,\u201d he said. AI can strengthen resilience through automation and predictive insight, but it introduces fresh dependencies and risks. Agentic AI in particular, he noted, \u201cintroduces a whole new way of managing a firm\u2019s operations, yet the risks and vulnerabilities are still poorly understood\u201d. Hybrid work, meanwhile, stretches the operational footprint, adding more nodes of vulnerability and complicating coordination when something goes wrong.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Stasko sees the infrastructure consequence. A distributed workforce relies more heavily on networks, identity systems, cloud platforms, and third-party services across many more locations, which calls for governance models that assume distributed access and continuous operations by default, backed by infrastructure that can maintain security, performance, and recovery across every user and site.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Taken together, both men say, these trends push resilience further away from being a technical issue and towards being an organisational one.<\/p>\n<h2 id=\"what-closing-the-gap-looks-like\" class=\"_subHeading1_1k87u_111 _base_1k87u_1\">What closing the gap looks like<\/h2>\n<figure class=\"_figure_wioo3_1\"><img decoding=\"async\" class=\"_base_12j3k_1\" alt=\"Holding up under pressure\" loading=\"lazy\" sizes=\"auto\" width=\"1140\" height=\"760\" srcset=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/47d307269837d837a097da73ced23196c15072ac29a8df7c370415872a53c1d3?w=500&amp;q=85 500w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/47d307269837d837a097da73ced23196c15072ac29a8df7c370415872a53c1d3?w=800&amp;q=85 800w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/47d307269837d837a097da73ced23196c15072ac29a8df7c370415872a53c1d3?w=1000&amp;q=85 1000w,https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/47d307269837d837a097da73ced23196c15072ac29a8df7c370415872a53c1d3 1140w\" src=\"https:\/\/cassette.sphdigital.com.sg\/image\/hardwarezone\/47d307269837d837a097da73ced23196c15072ac29a8df7c370415872a53c1d3?w=1000&amp;q=85\" style=\"--custom-aspect-ratio:1.5;contain-intrinsic-size:1140px 760px\"\/><figcaption class=\"_figureCaptions_wioo3_158\">\n<p class=\"_imageCaption_wioo3_165\">A successful organisation\u00a0assumes disruption will happen and designs operations to hold up under pressure.<\/p>\n<p>Photo: Pexels<\/p>\n<\/figcaption><\/figure>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">So what does a Singapore organisation that\u2019s actually closed the strategy-execution gap look like? Ross and Stasko agree on the shape of it.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">It assumes disruption will happen and designs operations to hold up under pressure, not just on a good day. It runs realistic scenarios across teams, systems, and partners often enough to see how decisions, dependencies, and escalation paths actually behave. Accountability sits at the executive level and shows up in budgets, operating cadence, and performance measures, not in a policy nobody opens twice. And it spends on recovery, not only prevention, so critical services come back fast when part of the ecosystem buckles.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Ross\u2019s advice to a board chair who\u2019s just finished the report is blunt:\u00a0<\/p>\n<div class=\"_nested_1lq60_1\">\n<ul class=\"_listElement_wioo3_107\">\n<li class=\"_listItem_wioo3_112\">Treat digital resilience as a core strategic priority, starting with governance\u00a0<\/li>\n<li class=\"_listItem_wioo3_112\">Move ownership out of one function and across the whole C-suite<\/li>\n<li class=\"_listItem_wioo3_112\">Drop static plans for continuous preparedness, with scenario testing for cascading failures treated as routine<\/li>\n<\/ul>\n<\/div>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">\u201cResilience is not a technology problem,\u201d he said. \u201cIt is a leadership discipline. Without strong governance and shared accountability, even the most advanced capabilities will fall short when disruption hits.\u201d<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">Singapore\u2019s strong showing in the report isn\u2019t a sign the job is done. It\u2019s a reminder that <b>good foundations only carry you so far<\/b>. The country has solid digital capability, mature risk management, and a stable operating environment, but disruption doesn\u2019t respect neat plans, company boundaries, or reporting lines. Singapore ranks highly overall, yet leadership accountability and ecosystem coordination are still the weaker spots, and only 30 percent of organisations say recent responses went mostly or exactly to plan.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">That\u2019s where the next phase has to start. Businesses need to stop treating resilience as an IT, cybersecurity, or compliance exercise and <b>instead bake it into how they run day-to-day<\/b>. Clearer board oversight, shared C-suite accountability, more realistic scenario testing, and tighter work with suppliers, cloud providers, and connectivity partners. As the attached interviews point out, resilience depends on how well organisations coordinate under pressure, not how much tech they\u2019ve bought.<\/p>\n<p class=\"_base_1s8rd_1 _default_1s8rd_12\">For Singapore, the stakes are higher because of its role as a regional hub for finance, trade, logistics, cloud, and cross-border connectivity. A disruption here rarely stays contained to one company or one market. The more connected the economy gets, the more resilience has to be designed across partners, networks, and borders from the start. The real test isn\u2019t whether organisations can prevent every disruption. It\u2019s whether they can keep moving, decide quickly, and recover together when things go wrong.<\/p>\n<\/div>\n<p><br \/>\n<center><br \/>\n<br \/><a href=\"https:\/\/www.hardwarezone.com.sg\/mobile\/telco\/singapore-digital-resilience-report-governance-gaps-2026\" target=\"_blank\" rel=\"noopener\">Read Full Article At Source <\/a><br \/>\n<center\/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>On 19 July 2024, a single faulty software update from the cybersecurity firm CrowdStrike took roughly 8.5 million Windows machines offline worldwide. In Singapore, the&#8230;<\/p>\n","protected":false},"author":1,"featured_media":65866,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"","fifu_image_alt":"","footnotes":""},"categories":[32],"tags":[6385,1238,4301,22],"class_list":["post-65865","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tech-gadgets-reviews","tag-businesses","tag-digital","tag-resilience","tag-singapore","wpcat-32-id"],"_links":{"self":[{"href":"https:\/\/sgbuzz.com\/index.php?rest_route=\/wp\/v2\/posts\/65865","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sgbuzz.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sgbuzz.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sgbuzz.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sgbuzz.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=65865"}],"version-history":[{"count":0,"href":"https:\/\/sgbuzz.com\/index.php?rest_route=\/wp\/v2\/posts\/65865\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sgbuzz.com\/index.php?rest_route=\/wp\/v2\/media\/65866"}],"wp:attachment":[{"href":"https:\/\/sgbuzz.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=65865"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sgbuzz.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=65865"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sgbuzz.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=65865"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}