The security of online systems is paramount to maintaining trust and confidence in the online financial services provided by the Financial Institutions in Singapore to their customers.
ABS released a guideline document for institutions in Singapore, which can be download here.
This document is a set of guidelines for penetration testing to ascertain the effectiveness of
the security controls put in place to preserve the confidentiality, integrity and availability of
online systems.
The scope of this document is for penetration testing of online systems which are publicly
accessible from the Internet.
Financial institutions have the option of adopting the methodology detailed in this guideline
for non-Internet facing services within their own organisations.