The CSA Whistleblowing Channel is managed by CSA’s Regulations Division

You should contact CSA at whistleblowing@csa.gov.sg only if you have direct, or at the very least, indirect access to insider information relating to cover-ups of conduct that threaten the cybersecurity of Critical Information Infrastructure. Hearsay information, e.g. information overheard from unknown third parties, is unlikely to be useful to CSA. If you have enquiries that you require clarification on, and feedback on CSA’s programmes and/or initiatives, you may contact CSA’s general mailbox at contact@csa.gov.sg.

Be assured that the strictest procedures are in place to safeguard your identity. The process of providing information will be facilitated through an assigned officer. Only core CSA personnel assigned to your case will know your identity.

The assigned officer may need to reach out to you via your email address to obtain further details that will assist with our investigation and follow-up action. 

Yes, after the conclusion of the whistle-blowing case, the assigned CSA officer will update you on the outcome.

No, CSA does not provide monetary rewards to whistle-blowers

If you had committed, aided or abetted any offence under the Cybersecurity Act, you may be subjected to enforcement action. However, your cooperation in providing information may be considered favorably in our review of the case.