Prioritising your investment

Cyber-risk
www.pwc.com/sg/risk-assurance
Prioritising your investment
To provide you with the confidence that you have the right cyber-risk capabilities – or you are on your way to building the right
capabilities – our solution typically begins with a cyber-risk maturity assessment. This covers six areas to help you achieve your
cyber-risk strategy and objectives. From the assessment, we aim to put in place a tailored and focused plan so you know you are
directing your investment to the right places.
You can’t secure everything
Seize the advantage
We help you set the right priorities.
We help you exploit the next
digital opportunity with
confidence.
• Protect what matters
• Strategy, organisation and
governance
Priorities
• Enterprise security architecture
• Compliance with privacy
and regulation
Risk
• R isk appetite and risk
management
• Threat intelligence
nfidence in
Co
• The digital trust dynamic is understood and embedded
in strategy
It’s not if but when
We help you build an intelligenceled defence, enabling rapid
detection and containment.
Crisis
Connections
• Breach readiness
rd
ur
e
y
ou
igi ta l f u t
Their risk is your risk
We help you understand and
manage risk in your
interconnected business
ecosystem.
• Continuity and resilience
• Crisis management
• Incident response and forensics
• Digital channels
• Monitoring and detection
Technology
People
• Threat modelling
• Partner and supplier
management
• Robust contracts
Fix the basics
It’s about people, not just technology
We help you use technology to your advantage, deriving
maximum return from your technology investments.
We help you build and maintain a secure culture, where
people are aware of their critical security decisions.
• Identity and access management
• Disciplinary and other HR processes
• IT security hygiene
• Insider threat management
• Information technology, operations technology
and consumer technology
• People and ‘moments that matter’
• Security culture and awareness
• Security intelligence and analytics
Cyber-risk services
Assess
Build
Manage
Respond
To have a deeper discussion about cyber-risk, please contact:
Vincent Loy
Financial Crime & Cyber Leader Partner, PwC
+65 9088 6328 vincent.j.loy@sg.pwc.com
Shong Ye Tan
Jimmy Sng
Cyber Security Partner, PwC
Cyber Security Partner, PwC
+65 6236 3262 +65 6236 3808
shong.ye.tan@sg.pwc.com
jimmy.sng@sg.pwc.com
Ervin Jocson
Cyber-risk Director, PwC
+65 8261 7996
ervin.jocson@sg.pwc.com
Cyber-risk
www.pwc.com/sg/risk-assurance
Our services
PwC provides a broad range of cyber-risk services. Our specialists are dedicated to helping our clients evaluate their
vulnerabilities and assist them in improving and securing their security environment against threats and incidents.
Our approach to cyber-risk is clear: we see it as a continual process of improvement through assess, build, manage and respond.
We believe this holistic approach is required to bring value against the threats we face today. We pride ourselves in being the
only professional services firm who can provide clients with a full suite of integrated cyber-risk services.
Assess
Build
Respond
Manage
Assess
Build
Respond
Manage
Understanding your capabilities and maturity to help
you prioritise your investment
Designing and delivering cyber-risk improvement
programmes
• Board and regulation
assurance
• Privacy impact assessment
Framework development
Embedding security
• Enterprise risk management
• Awareness and training
• Breach discovery assessment
•S
tandards compliance and
certification
• Enterprise security architecture
• Contracting for security
• Cyber security diagnostic
• Strategy and roadmap
• Information governance
• CSIRT and policy development
• Cyber threat assessments and
modelling
• Third
party assurance,
including cloud
•P
rivacy and other compliance
policy development
•C
yber-risk programme
assurance
• Legal and regulatory
compliance
•T
hreat intelligence, detection
and response maturity
assessment
Capability build
• Penetration testing
•C
yber security programme
delivery
•S
ecurity technologies
development
• Policy and contract review
• Employment contract advice
• Insider threat management
• Product development support
•S
ecurity intelligence and
analytics
•T
hreat intelligence, detection
and response capability
development
Assess
Build
Respond
Manage
Assess
Build
Respond
Manage
Rapid, global access to leading cyber incident containment,
investigation and crisis management expertise
Managing and maintaining control over your business
enabling you to focus on strategic priorities
• Breach notification
• e-Discovery and disclosure
• Computer, network and
malware forensics
• Human resource advice
(employee breaches)
•A
dvanced threat detection
and monitoring
•R
etained incident response
services
•F
raud and eCrime data
analytics
•C
yber defence team
augmentation
• Threat intelligence
• Crisis management
• Cyber incident response and
forensic investigation
(including under privilege)
•N
etwork intrusion
containment and remediation
• Regulatory proceedings
• Training
•M
anaged vulnerability
assessment
•R
egulatory and compliance
advice
• Third party litigation
© 2014 PwC. All rights reserved. In this document, “PwC” refers to PricewaterhouseCoopers LLP, and may sometimes refer to the PwC network. Each member firm is a
separate legal entity. Please see www.pwc.com/structure for further details.