Founded in 1989, the Information Security Forum (ISF) is an independent, not-for-profit organisation with a Membership comprising many of the world’s leading organisations featured on the Fortune 500 and Forbes 2000 lists. We are dedicated to investigating, clarifying and resolving key issues in information security and risk management, by developing best practice methodologies, processes and solutions that meet the business needs of our Members.
The ISF provides Members with a trusted and confidential environment within which their in-depth knowledge and practical experience can be shared. This approach enables the ISF to harness the collective insights and knowledge of its Members to deliver leading-edge solutions that are comprehensive, pragmatic and effective. By working together, Members avoid the major expenditure required to reach the same goals on their own.
ISF Consultancy Services further provide independent and objective guidance, support and training. They can better support global business leaders and information security professionals to build and embed cyber resilience in their organisational structure, planning processes, information risk management and information security initiatives.
The ISF Security Model
The ISF has developed a model that shows how we address – via our Research, Knowledge Exchange and Tools & Methodologies – the fundamental elements of an information security programme. We provide insights, best practice standards and tools which address every aspect of the model to aid organisations in enhancing their information risk environment, including organisations in their supply chain.