Skip to main content
A Singapore Government Agency Website How to identify
Official website links end with .gov.sg
Government agencies communicate via .gov.sg websites (e.g. go.gov.sg/open). Trusted websites
Secure websites use HTTPS
Look for a lock () or https:// as an added precaution. Share sensitive information only on official, secure websites.
Singapore Government ICT&SS Policy Reform

Highlights

External publications and citations from industries.

Last updated 5 March 2026

External publications have recognised our work in modernising cybersecurity standards, strengthening security automation, and advancing interoperable control frameworks. These highlights reflect the broader industry shift toward structured, machine-readable security practices that support scalable assurance in complex digital environments.

Open Security Control Assessment Language (OSCAL) — ThoughtWorks Radar

We’re excited by its potential to streamline security assessments, reduce reliance on spreadsheets and box-ticking exercises and even enable automated compliance when incorporated into compliance-as-code and continuous compliance platforms.”
ThoughtWorks Technology Radar, Nov 2025

Adapting OSCAL for Singapore Government — NIST / GovTech

NIST workshop ‘From One‑Size‑Fits‑All to Right‑Sizing: Adapting OSCAL for the Singapore Government’s Tech Standards’ highlighted how OSCAL is being adopted to standardise and automate control frameworks across Singapore’s public‑sector technology landscape.
NIST / GovTech Singapore, 2025