You are viewing 19 of 25 results
Array
tool

ISF Aligned Tools Suite 2022

The ISF Aligned Tools Suite has been designed to help organisations maintain agility and confidence when meeting current challenges head on.

Read more
Array
tool

The ISF Benchmark

The ISF Benchmark Executive Summary provides an easy to digest illustrative overview of how organisations can effectively use the ISF Benchmark to assess and improve their security arrangements.

Read more
Array
tool

Standard of Good Practice for Information Security 2020

The goal of every information security professional is to enable the organisation to conduct its…

Read more
Array
tool

Managing Information Risk the ISF Way

The ISF Managing Information Risk the ISF Way Executive Summary provides an easy to read illustrative overview of the ISF’s most powerful and popular tools.

Read more
Array
tool

The ISF Standard of Good Practice Online Informative References to NIST CSF

The ISF has been working with the United State's National Institute of Standards and Technology…

Read more
Array
tool

Quantitative Techniques in Information Risk Analysis

Quantitative techniques in information risk analysis are swiftly emerging as a method to deliver value through accurately measuring an organisation’s exposure to loss.

Read more
Array
tool

The ISF Maturity Model Accelerator Tool

This accelerator tool contains the ISF Maturity Model. It enables users to measure their maturity…

Read more
Array
tool

Supply Chain Assurance Framework (SCAF)

The Supply Chain Assurance Framework provides a structured approach to help organisations’ information security functions to embed information security considerations into the contracting process.

Read more
Array
tool

Supplier Security Evaluation (SSE)

The SSE Accelerator Tool provides an easy-to-use, spreadsheet based method to assess the information security status of an individual supplier or a group of suppliers.

Read more
Array
tool

Information Risk Assessment Methodology 2 (IRAM2)

IRAM2 is a unique methodology for assessing and treating information risk. It includes guidance for risk practitioners to implement the six-phase process.

Read more