Cybersecurity audit

With our growing dependence on technology as a critical tool to support and manage information, businesses and organisations are seeing a rapid change in the cybersecurity landscape, as new and emerging cyber threats are escalating at an alarming rate.

Due to the evolving nature of the threat landscape and the increased complexity of IT environments (i.e. on-premise and cloud computing) and more data and devices implemented, threat actors have more opportunities to perpetrate cyber attacks.

Latest edition - 4 items

Best practices and guidance

Moving faster: Reinventing compliance to speed up, not trip up

March 2025

New world, new rules: Cybersecurity in an era of uncertainty

How our cybersecurity audit services can help you

At PwC Singapore, we have the people and capability to assist you in your journey to meet your organisation's cybersecurity objectives. A cybersecurity audit is a crucial part of this journey because it helps to reduce the risks and impacts of a cyber attack while increasing the system's resilience and the trust of its users.

IT system design and effectiveness evaluation
Gap and vulnerability identification
Cyber regulatory compliance
Cyber risk mitigation

IT system design and effectiveness evaluation

Understand your organisation's security posture by evaluating key IT system design and operating effectiveness against existing security controls.

Gap and vulnerability identification

Identify gaps and vulnerabilities within your organisation's key IT systems (i.e. application, infrastructure, network) and associated processes allowing stakeholders to develop an action plan to mitigate the identified issues.

Cyber regulatory compliance

Ensure compliance with policies and regulatory requirements related to cybersecurity (e.g. organisation's IT policies, Singapore Government Instruction Manuals (IM8), Singapore Cybersecurity Act such as Cybersecurity Code of Practice (CCOP) for Critical Information Infrastructure, Singapore SMS Sender ID Registry (SSIR)¹) and Data Protection (e.g. Personal Data Protection Act (PDPA), IM8 Additional Protection of Personal Data)

_{¹Singapore SMS Sender ID Registry (SSIR): Participating Licensees to adhere to IMDA’s Cybersecurity Standards under Singapore’s SMS Sender ID Registry (SSIR) by October 1, 2025, through implementation of mandatory cybersecurity controls and independent audits to mitigate the risk of regulatory and reputational repercussions.}

Cyber risk mitigation

Mitigate business risks and impacts, effectively reducing threats of financial losses, reputational damage and operational disruptions.

Required fields are marked with an asterisk(*)

Business email*

Name*

Organisation*

Job title*

Message*

Tick the box to verify you are not a robot. *

Your personal information will be handled in accordance with our Privacy Statement. You can update your communication preferences at any time by clicking the unsubscribe link in a PwC email or by submitting a request as outlined in our Privacy Statement.

Contact us

Jimmy Sng

Technology Risk Services Leader, PwC Singapore

Tel: +65 9746 6771

Yap Yee Chin

Director, PwC Singapore

Tel: +65 9733 7148

Hide

© 2015 - 2025 PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.

Cybersecurity audit

Latest edition - 4 items

How our cybersecurity audit services can help you