Grants and co-funding · checked July 2026
The co-funding, explained properly.
The paperwork is ours to settle. The numbers are yours to check. (say real: government pay 70%, we settle the paperwork.)
Scheme by scheme.
Five names get thrown around. Here is what each one actually covers, who qualifies, and when the window closes.
-
CISOaaS
70% -
Covers: Cyber Essentials and Cyber Trust readiness with a CSA-onboarded consultant.
Eligibility: SMEs: registered in SG, ≥30% local shareholding, turnover ≤ S$100M or ≤200 employees.
Window: Certification-fee support runs through 6 Feb 2028.
Under CISOaaS, CSA pays its co-funding share directly to the appointed consultant (staged across health-plan completion and certification); the client pays the remainder.
Our plain-language summary of published scheme mechanics; staging percentages are confirmed with CSA during onboarding and stated in every engagement letter. Checked July 2026.
-
Certification-fee support
S$250 to S$650 -
Covers: part of the certification body's audit fee for a first Cyber Essentials certification, scaled by endpoints (S$1,375 to S$2,250 for a first Cyber Trust certification).
Window: through 6 Feb 2028.
Billed and paid by the certification body directly, not by us.
-
EDG
50% -
Covers: First-time standards adoption (ISO 27001, DPTM and similar) for eligible SMEs.
EDG is being merged into the EDGE scheme in 2H 2026; current rules apply until launch.
-
PSG
50% -
Covers: Pre-approved cybersecurity tools (not consultancy), capped at S$30,000.
Tools, not consultancy. Our readiness fees sit outside this cap.
-
SFEC
Credit -
Covers: Staff cyber-training top-ups (S$10,000 credit, up to 90% of out-of-pocket costs).
Current credit runs to 30 Nov 2026; the redesigned SFEC under the enterprise workforce transformation package has not been published, so treat post-2026 rules as unknown.
What we settle for you.
- 01
The eligibility check, done properly before engagement. Eligibility is confirmed, never assumed.
- 02
The application paperwork, filed on your behalf and in the timeline the scheme requires.
- 03
The staged claims, tracked through to payout, so nothing sits half-finished.
- 04
The net number, shown to you before anything is signed. No approval is promised; the number is.
Plain answers
Am I eligible for CISOaaS co-funding?
SMEs: registered in SG, ≥30% local shareholding, turnover ≤ S$100M or ≤200 employees. We confirm eligibility properly, free, before anything is signed. Eligibility is checked, never assumed.
Does the grant go to us or to you?
Under CISOaaS, CSA pays its co-funding share directly to the appointed consultant (staged across health-plan completion and certification); the client pays the remainder. Our plain-language summary of published scheme mechanics; staging percentages are confirmed with CSA during onboarding and stated in every engagement letter.
What if I am not eligible?
Then the published price is the price. Every fee we charge is on the pricing page in full sentences, with or without co-funding attached to it.
Do grants cover the certification body’s audit fee?
CSA's certification-fee support runs S$250 to S$650 for Cyber Essentials and S$1,375 to S$2,250 for Cyber Trust, through 6 Feb 2028. That fee is billed by the certification body directly, not by us.
Our CSA CISOaaS onboarding application is in progress; co-funding applies once appointed. Checked July 2026.
Bring us nothing but the question.
A 30-minute chat with a consultant, not a salesperson. You leave with a plan on one page, whether or not you hire us.