The latest edition of the Standard of Good Practice for Information Security 2018 (the Standard) provides business-orientated focus on current and emerging information security topics. This includes enhanced coverage of the following hot topics: Agile system development, alignment of information risk with operational risk, collaboration platforms, Industrial Control Systems (ICS), information privacy and threat Intelligence.

With its comprehensive coverage of information security controls and information risk-related guidance, it provides business leaders and their teams with an internationally recognised set of good practices. By implementing the Standard, it helps organisations to:

– be agile and exploit new opportunities, while ensuring that associated information risks are kept within acceptable levels

– respond to rapidly evolving threats, including sophisticated cyber-attacks, using threat intelligence to increase cyber resilience

– identify how regulatory and compliance requirements can best be met

The Standard, along with the ISF Benchmark; the ISF’s comprehensive security control assessment tool, provides complete coverage of the topics set out in ISO/IEC 27002:2013, NIST Cybersecurity Framework, CIS Top 20, PCI DSS and COBIT 5 for Information Security.”

The Standard acts as a business enabler for individuals performing the following roles: CISOs, Information Security Managers, Risk Management Specialists, Business Managers, IT Managers and Technical Specialists, Internal and External Auditors, IT Service Providers, Procurement and Vendor Management teams.

Executive Summary

The ISF Standard of Good Practice for Information Security 2018

Please fill out the form below to download a complimentary Executive Summary.

Please provide your details to download this document:

The Information Security Forum (ISF) is a data controller for the personal data collected on this website.

For information on how we collect and use your personal data, please read our Privacy Notice.

Please read and agree with our Terms Of Use.

From time to time, the ISF would like to contact you regarding our latest products, services and events.

By ticking the relevant boxes below, please indicate your preferences on how you want to be contacted:

You can update your preferences at any time, or withdraw consent after submission by going to the ‘Already Registered’ tab.

Please enter the email address you previously registered with to access the download:

You have previously downloaded from our website. For more information on how we use your personal information, please see our Privacy Notice.

Please refamiliarise yourself with our Terms Of Use.

To update your preferences on how you would like to be contacted by the ISF, please indicate below:

To unsubscribe from all ISF communications. Click here: