The Department of Information and Communications Technology (DICT) has accredited the first 11 cybersecurity firms under its newly launched DICT Trusted Assessment Provider (D-TAP) program, a framework aimed at strengthening the security of government digital systems before they are rolled out to the public.
The program was introduced as more Filipinos rely on online platforms for everyday transactions such as applying for jobs, accessing government services, and submitting personal information. These activities depend on digital systems that must be secure and reliable even before public use.
To address this, DICT formally launched the D-TAP accreditation program to ensure that cybersecurity assessments of government systems are conducted only by qualified and vetted providers.
The initiative is designed to help agencies identify and address vulnerabilities early, reducing the risk of data breaches and service disruptions.
“Filipinos should not have to worry about hidden risks when using online services,” said DICT undersecretary for cybersecurity Julius Gorospe. “Our responsibility is to ensure systems are ready and secure before people are asked to share their information.”
Under D-TAP, accredited firms are tasked to review and test digital systems prior to public deployment. DICT described the approach as preventive, allowing agencies to fix security gaps behind the scenes rather than placing the burden on users after incidents occur.
“This is about protection before problems arise,” Gorospe added. “When Filipinos go online, they deserve peace of mind.”
The first batch of D-TAP–accredited firms includes:
- Novare Technologies Inc.
- Data-prove
- White Cloak Technologies Inc.
- Orel Technology Solutions
- Mara Linux and Business Solutions Inc.
- J. Pineda Information Technology Consulting Services
- Euodoo Technologies, Inc.
- Doña Alejandra, Inc.
- Rosehall Management Consultants, Inc.
- Nullforge Security Inc.
- RT&Co Cybersecurity, Inc. (formerly J Mantua IT Services, Inc.)
DICT emphasized that accreditation is not automatic and is granted only to firms that meet the program’s technical and compliance requirements. The program remains open to other qualified cybersecurity and IT service providers nationwide.
