Consultancy firms that are ISF Members can use ISF tools and research to help their clients implement information security risk management programmes that meets the business needs of their organisation.

We have tools and research solutions to address a wide range of information security challenges that consultancy firms and their clients may be facing, from strategic and compliance to process-based issues. For example:

The ISF Benchmark

Consultancy firms who are ISF Members can carry out the ISF Benchmark on behalf of their clients to help them to anonymously measure the effectiveness and value of their security investments against their peers, by region or market sector, specifically by:

  • Having an in-depth assessment of their security arrangements across different environments and activities
  • Comparing their performance against the ISF Standard of Good Practice for Information Security, ISO/IEC 27001/2 and COBIT 5 for Information Security and CIS Top 20 Critical Security Controls for Effective Cyber Defense.
  • Having real time results on their security status for presentation to senior management.

Once the Benchmark has been completed, you can provide ongoing support to help your clients to strengthen their security measures across their organisation.

By encouraging your clients to become Members of the ISF, they will have access to the wide range of practical guidance and networking opportunities that you receive.


For more information on Tools For Consultancies