Cybersecurity frameworks and maturity

Latest edition - 4 items

Best practices and guidance

Moving faster: Reinventing compliance to speed up, not trip up

March 2025

New world, new rules: Cybersecurity in an era of uncertainty

Improve your cybersecurity programme

As businesses increasingly embrace digitisation, effective cybersecurity management has become essential for senior management and cybersecurity teams. To safeguard against evolving threats and risks, organisations can leverage established cybersecurity standards and frameworks to strengthen their security posture. At PwC, we offer unparalleled expertise in assessing and enhancing cybersecurity controls through industry-leading frameworks and regulatory standards.

Cybersecurity and controls framework – NIST Cybersecurity Framework, ISO/IEC 27001, Control Objectives for Information and Related Technologies (COBIT), Information Technology Infrastructure Library (ITIL), Data Protection Trustmark, CSA Cyber Trustmark
Regulatory standards - Singapore Cybersecurity Act, CSA Cybersecurity Code of Practice for Critical Information Infrastructure (CSA CCoP), MAS Technology Risk Management Guidelines, MAS Cyber Hygiene Guidelines, Singapore Personal Data Protection Act (PDPA), Singapore SMS Sender ID Registry (SSIR)

We help organisations throughout your journey

At PwC, we possess extensive expertise in evaluating technology controls using frameworks. We can help you determine if your cybersecurity and IT practices are aligned with the standards, providing stakeholders with a comprehensive understanding of your cybersecurity risk management posture.

Cybersecurity framework development
Cybersecurity maturity and gap assessment
Controls implementation
Compliance / certification attestation
Continuous monitoring

Cybersecurity framework development

Define objectives and scope of the framework
Conduct cybersecurity risk assessment
Development of cybersecurity strategy and framework

Cybersecurity maturity and gap assessment

Assess your current state against the requirements
Conduct maturity assessments and benchmarking against NIST CSF
Develop roadmap for enhancement

Controls implementation

Develop cybersecurity strategy
Enhance supply chain security program
Enhance your information system policies and processes to comply with requirements

Compliance / certification attestation

Pre-certification audit to assess readiness
Compliance audit against the regulatory standards
Provide support during the external certification audit

Continuous monitoring

Conduct training and awareness session
Retainer services for cybersecurity services

Required fields are marked with an asterisk(*)

Business email*

Name*

Organisation*

Job title*

Message*

Tick the box to verify you are not a robot. *

Your personal information will be handled in accordance with our Privacy Statement. You can update your communication preferences at any time by clicking the unsubscribe link in a PwC email or by submitting a request as outlined in our Privacy Statement.

Contact us

Jimmy Sng

Technology Risk Services Leader, PwC Singapore

Tel: +65 9746 6771

Bhagya Perera

Managing Director, Technology Risk Services & Cybersecurity, PwC Singapore

Tel: +65 9670 7491

Michelle Xie

Senior Manager, Digital Solutions, PwC Singapore

Tel: +65 9624 6280

Hide

© 2015 - 2025 PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see www.pwc.com/structure for further details.

Cybersecurity frameworks and maturity

Latest edition - 4 items

Improve your cybersecurity programme