Skip to main content
A Singapore Government Agency Website How to identify
Official website links end with .gov.sg
Government agencies communicate via .gov.sg websites (e.g. go.gov.sg/open). Trusted websites
Secure websites use HTTPS
Look for a lock () or https:// as an added precaution. Share sensitive information only on official, secure websites.
Singapore Government ICT&SS Policy Reform

Highlights

External publications and citations from industries.

Last updated 12 May 2026

External publications have recognised our work in modernising cybersecurity standards, strengthening security automation, and advancing interoperable control frameworks. These highlights reflect the broader industry shift toward structured, machine-readable security practices that support scalable assurance in complex digital environments.

Open Security Control Assessment Language (OSCAL) — ThoughtWorks Radar

We’re excited by its potential to streamline security assessments, reduce reliance on spreadsheets and box-ticking exercises and even enable automated compliance when incorporated into compliance-as-code and continuous compliance platforms.
ThoughtWorks Technology Radar, Nov 2025

Adapting OSCAL for Singapore Government — NIST / GovTech

NIST workshop ‘From One‑Size‑Fits‑All to Right‑Sizing: Adapting OSCAL for the Singapore Government’s Tech Standards’ highlighted how OSCAL is being adopted to standardise and automate control frameworks across Singapore’s public‑sector technology landscape.
NIST / GovTech Singapore, 2025