return to Consultancy Services
Consultancy Service

Policy and Standards support

riskemerging threatstechnologygovernancesupply chaincloudcomplianceai
Prepare for success with Controls, Policies and Standards
Download the scope sheet

The ISF’s Standard of Good Practice for Information Security is the most comprehensive information security standard available. It provides complete coverage of the topics set out in ISO/IEC 27002:2013, NIST Cybersecurity Framework, CIS Top 20, PCI DSS and COBIT 5 for Information Security. It is used by many of the worlds leading organisations as their primary reference to manage information risk.

Our services will help you implement the Standard to:

  • apply a robust framework for information security that provides consistent risk-based protection across the organisation and in your supply chain
  • meet your regulatory and compliance requirements
  • be agile and exploit new business opportunities – whilst ensuring that associated information risks are managed to acceptable levels
  • respond to rapidly evolving threats
  • update internal security policies.

Make SOGP Work For You

Optimise your use of the SOGP with training from ISF Learning. Find out more by filling out the form below.