The ISF’s Standard of Good Practice for Information Security 2018 (the Standard) is the most comprehensive information security standard available. It provides complete coverage of the topics set out in ISO/IEC 27002:2013, NIST Cybersecurity Framework, CIS Top 20, PCI DSS and COBIT 5 for Information Security. It is used by many of the worlds leading organisations as their primary reference to manage information risk.

Our consultancy services will help you implement the Standard to:

  • Apply a robust framework for information security that provides consistent risk-based protection across the organisation and in your supply chain
  • Meet your regulatory and compliance requirements
  • Be agile and exploit new business opportunities – whilst ensuring that associated information risks are managed to acceptable levels
  • Respond to rapidly evolving threats
  • Update internal security policies.

Case Study:

Following an external audit, a large multinational organisation was required to update and modernise its internal security policies. An ISF Consultant helped the company to use the Standard as the basis for an updated set of policies, procedures and guidelines that met the requirements of the auditors and regulatory bodies.

Executive Summary

Security Governance, Policies, Compliance, Standards and Control Framework

Please fill out the form below to download a complimentary Executive Summary.

Please provide your details to download this document:

The Information Security Forum (ISF) is a data controller for the personal data collected on this website.

For information on how we collect and use your personal data, please read our Privacy Notice.

Please read and agree with our Terms Of Use.

From time to time, the ISF would like to contact you regarding our latest products, services and events.

By ticking the relevant boxes below, please indicate your preferences on how you want to be contacted:

You can update your preferences at any time, or withdraw consent after submission by going to the ‘Already Registered’ tab.

Please enter the email address you previously registered with to access the download:

You have previously downloaded from our website. For more information on how we use your personal information, please see our Privacy Notice.

Please refamiliarise yourself with our Terms Of Use.

To update your preferences on how you would like to be contacted by the ISF, please indicate below:

To unsubscribe from all ISF communications. Click here: