SOGP is aligned with a wide variety of external standards and frameworks, including ISO/IEC 27002, NIST Cybersecurity Framework, and the CSA Cloud Control Matrix, enabling organisations to consolidate compliance activities in a single, unified approach.
Respond rapidly to mounting threats with a ready-made framework of security controls.
Work towards certification of compliance in an efficient, cost-effective manner.
Assess information risk
Deliver comprehensive, consistent protection in line with your organisation’s risk appetite.
Greatly reduce the time and effort required to produce information security policies and procedures.
Manage supply chains
Incorporate your supply chain into a risk-based approach to information security.
Increase the profile of information security across the business.
Already an ISF Member?
If you are already a part of the ISF community, head to ISF Live for access to all the relevant materials required to implement the SOGP, the SOGP WebApp, and a network of over 25,000 information security professionals.
Using the SOGP and CCM for Multi-Cloud Security
A webinar exploring how the cross reference can help security practitioners deploy effective controls over their multi-cloud environments.
Controls, Policies and Standards Support
Develop, validate and improve your security controls and policies to create standards that staff across the business can easily follow.