2026 Edition Has Been Concluded Successfully! See You All In 2027! 2026 Edition Has Been Concluded Successfully! See You All In 2027!2026 Edition Has Been Concluded Successfully! See You All In 2027! 2026 Edition Has Been Concluded Successfully! See You All In 2027!
DELEGATE ENQUIRY
SPONSOR ENQUIRY
Tradepass #PhilSec
  • Home
  • Speakers
  • Sponsors
  • Agenda
  • Awards
  • Gallery
  • Past Edition
    • 2025
      • Agenda
      • Sponsors
      • Speakers
      • Awards
    • 2024
      • Agenda
      • Sponsors
      • Speakers
    • 2023
      • Agenda
      • Sponsors
      • Speakers

How National Cybersecurity Plans Are Shaping Digital Resilience in the Philippines

The Philippines has experienced significant growth in its digital economy, particularly in areas such as e-commerce, outsourcing, and the expansion of online government platforms. However, this progress has been accompanied by a rise in the frequency and sophistication of cyberattacks. Reports indicate an increasing number of malware infections, data breaches, and website intrusions affecting government agencies, educational institutions, and communication networks. These incidents compromise sensitive information and disrupt essential services for both individuals and organizations.

The national cybersecurity plan of the Philippines therefore addresses these issues through a comprehensive framework. Issued in 2024 under Executive Order No. 58, the plan lays out strategic measures to strengthen the protection of digital infrastructure. It supports cyber resilience by linking rules, tools, and training efforts. The outcome gives the country a firmer base for safe online services while backing continued economic progress.

The National Cybersecurity Plan 2023–2028

A Whole-of-Nation Roadmap

The national cybersecurity plan of the Philippines acts as the main guide for the entire country. The Department of Information and Communications Technology prepared it after talks with other government bodies, businesses, and specialists. It fits with the Philippine Development Plan during the same period. President Ferdinand Marcos Jr. made it a national effort through an executive order. All agencies and local units now share responsibility for its goals. The plan goes past written goals to include real coordination, shared resources, and joint work.

Core Outcomes of the Plan

Three main results guide the plan. It works to defend the state and citizens in cyberspace with stronger monitoring and quicker fixes. It also aims to build more skilled people through training programs and job paths. Finally, it strengthens rules and standards across government and industry. These targets create a steady system that covers protection, skills, and oversight. When combined, they lay the groundwork for steady cyber resilience in daily digital activities.

How the Plan Builds Digital Resilience Across Sectors

Government and Public Services

Government systems play a critical role in managing essential services such as patient records, tax administration, and emergency alert systems. The plan emphasizes strengthening the security of government networks, including the fiber-optic backbone that connects national and local offices. Moreover, the updated design incorporates built-in intrusion detection capabilities and more secure data transmission pathways to enhance overall system resilience.

The Cybersecurity Bureau has grown the National Computer Emergency Response Team to cover full days and nights. A central database now gathers details on weak spots and attack methods so agencies can share them. Regular risk checks and monthly updates help shorten the time needed to handle problems. As a result, public services remain reachable even when attacks occur. This directly adds to cyber resilience for the many Filipinos who use online government tools regularly.

Business and Private Sector

Companies power large parts of the digital economy through mobile banking and online shops. The plan promotes closer work between government and telecom firms to spot threats sooner. Providers follow basic rules for removing malware and reporting infected networks. Online services coordinate with officials on ways to handle false information.

A voluntary labeling system helps buyers pick safer connected devices. Certified teams carry out checks and tests according to set guidelines. These actions give firms clear ways to guard customer details and keep work running. Smaller businesses gain from shared warnings about threats, which reduces the expense of setting up their own safeguards. The plan brings cyber resilience strategies into routine company operations while leaving room for new ideas.

Critical Information Infrastructure

Power supply, transport, banking, and health services form the core of national functions. The plan supports an order that identifies critical systems based on their effect on the economy and people. Owners set up special teams and pass regular checks through reviews and drills.

Sector groups link with the national team using a standard process with six stages for handling incidents. Landing points for undersea cables get special focus since they carry most global data. Efforts to map and protect these links help avoid long service breaks. Such work turns possible weak areas into better defended parts of the system that support wider cyber resilience.

Building Workforce Capabilities and Policy Strength

A skilled workforce remains essential for effective cybersecurity defense. The plan designates October as Cybersecurity Awareness Month and requires government agencies to conduct awareness programs for employees and the general public. The ICT Academy has also established a dedicated center that links academic institutions, research organizations, and industry partners to strengthen collaboration and skills development. In addition, grants and certification pathways provide opportunities for both students and professionals to advance their competencies. Competitions and practical training initiatives further assess real-world skills and help channel emerging talent into the cybersecurity sector.

Policy work gives the National Cybersecurity Inter-Agency Committee more power to coordinate actions. Basic rules now address data handling, supplier risks, and safe software building. Draft laws cover a Cybersecurity Act that calls for timely reports on incidents and shields researchers who share findings properly. These changes tighten cybersecurity governance in the Philippines by filling holes in existing rules and their application.

Real-World Progress and Measurable Gains

Early implementation efforts have produced measurable outcomes. In the 2024 United Nations Global Cybersecurity Index, the Philippines improved its global ranking to 53rd place, up from 61st in the previous assessment, achieving a score of 93.49 points. This progress placed the country within the advanced tier of nations with established cybersecurity frameworks, institutional structures, and collaborative mechanisms.

By 2025, key policy discussions had been completed, and training initiatives helped government offices align their operations with national cybersecurity objectives. An increasing number of agencies now report security incidents more consistently, while the national response team is able to manage a larger share of cases in a more timely manner. Public awareness campaigns have also expanded through education and community outreach programs. 

In addition, strengthened coordination with telecommunications providers has improved threat intelligence sharing and accelerated responses to widespread cyber incidents. Collectively, these developments demonstrate that the Philippine National Cybersecurity Plan is transitioning from policy formulation to practical implementation, steadily enhancing the country’s overall cyber resilience.

Remaining Challenges and Next Steps

Some difficulties continue. A shortage of skilled cybersecurity professionals continues to limit capacity, while many small and medium-sized enterprises still view security investments as optional rather than essential. Extending full measures to local governments calls for added funding and help. Important bills on critical infrastructure protection still need completion. Fresh risks tied to artificial intelligence and complex attacks demand ongoing updates to methods and preparation.

Future actions include finishing secure upgrades to the government network, bringing all key sectors on board, and widening ties abroad for better information on threats. Regular reports to the President will maintain a consistent nationwide drive. Continued attention in these areas should narrow the remaining gaps and extend protection further.

Strengthen Digital Resilience: Register for PhilSec Today

The Philippines has climbed the global cybersecurity rankings, expanded its national frameworks, and sharpened its institutional response – but the work is far from finished. Skilled talent remains scarce, critical legislation is still pending, cyber resilience strategies still vary widely across sectors, and AI-driven threats are rewriting the rules faster than most organizations can keep up.

PhilSec, returning 30 June – 1 July at the prestigious Manila Marriott Hotel, is where the country’s most consequential cybersecurity decisions get challenged, refined, and acted on. 

Bringing together government officials, CISOs, compliance leaders, and technology partners, the sixth edition moves beyond broad strategy into the specific, sector-level action that the National Cybersecurity Plan 2023–2028 now demands.

Attendee Profile

  • CISOs, Heads of Information Security, Risk, Compliance, Forensics, and Cyber Law
  • Senior decision-makers from banking, BPO, healthcare, telecom, and government
  • Representatives from both public and private enterprises across the country

Agenda Highlights

  • AI-powered threats and real-time organizational responses
  • Cloud and IoT security across hybrid environments
  • Digital forensics and incident response
  • Regulatory alignment with the National Cybersecurity Plan 2023–2028
  • Data privacy, compliance, and governance under Philippine law

What the next phase of Philippine cybersecurity looks like depends on the conversations happening here – and this is where they start. 

Join over a thousand professionals driving that conversation!

For more information about the event, visit: https://www.philsecsummit.com/

Recent Posts

  • The Future of Identity and Access Management in Passwordless ...

  • The Rise of Deepfake-Driven Financial & Executive Fraud ...

  • AI-Driven Security Operations: Reducing Mean Time to Detect ...

  • AI Governance in Cybersecurity: Managing Trust, Transparency ...

  • Building Resilience Against Nation-State Cyber Threats & ...

PhilSec 2024

Champions of cybersecurity since 2021, PhilSec leads the charge to secure the digital landscape of the Philippines.

About Tradepass

  • About Us
  • Events
  • Contact Us
  • Blogs

Quick Links

  • Sponsorship Opportunities
  • Speaking Opportunities
  • Media Enquiries

Follow Us:

All rights reserved. © 2026 Tradepass LLP.
  • Terms of Use
  • Privacy Policy
Register Now