The Singapore Institute of Directors (SID) and cybersecurity firm Ensign InfoSecurity have jointly launched a cyber incident management simulation programme designed specifically for company boards, with a target to train 3,500 directors across the Asia-Pacific region by 2030.

Dubbed “Simulation-in-a-box”, the programme places entire boards through a 90-minute ransomware wargaming exercise, requiring participants to make real-time decisions on incident containment, public disclosure, recovery, and stakeholder management. The sessions are led by Ensign incident responders with direct experience handling real-world cyber crises.

Boards under growing pressure to act on cyber risk

The launch comes as regulatory expectations around board-level cyber preparedness continue to rise. Singapore’s Ministry of Digital Development and Information (MDDI) has announced plans to mandate cybersecurity training for board members of Critical Information Infrastructure (CII) organisations from Q1 2026, covering sectors such as energy, banking and finance, and healthcare.

To date, more than 500 SID members have participated in existing cyber incident management training offered by the two organisations. The new “Simulation-in-a-box” module is designed to go further — putting boards under time pressure and walking them through the full lifecycle of a breach, from initial disruption through to consequence management.

During a pre-launch phase, 100 board members across Singapore and Thailand have already signed up for the programme.

Regional rollout planned

SID Board Academy will offer the programme to boards in Malaysia, Indonesia, Hong Kong, and Australia, in addition to Singapore. Each session can be tailored to the specific regulatory environment and business context of the participating board.

“Cyber incidents are increasingly placing boards at the centre of decision-making, requiring them to weigh security, operational continuity, financial impact and legal exposure in real time. This programme is designed to help boards build practical experience and decision-making skills needed to lead through cyber crises with clarity and confidence.” — Lim Minhan, Executive Vice President of Consulting, Ensign InfoSecurity

“With this ‘Simulation-in-a-box’ offered by the SID Board Academy, and the ongoing complimentary Cyber Incident Management Training for SID members, we count on Ensign’s support to prepare up to 3,500 directors by 2030 to confidently lead their organisations through cyber incidents.” — Emily Poon, CEO-Designate, Singapore Institute of Directors