Identify the Best Framework for Your Security Policies
If you're already a member, click here to log in.
Major Business Pain Points
Recommendations
Key Points
Policies don’t make your organization compliant. However, aligning the policy development with a relevant framework and implementing the controls and requirements that have been documented are critical steps in achieving compliance.
Approach
Methodology and Tools
1. Identify the best framework for your security policies
Understand the benefits of various frameworks to develop your security policy suite.
2. Develop security policies aligned with the NIST SP 800-171 framework
If the NIST framework fits your needs, customize the templates for a comprehensive policy suite.
3. Develop security policies aligned with the ISO 27001 framework
If the ISO framework fits your needs, customize the templates for a comprehensive policy suite.
4. Develop other procedural-based security policies
Leverage lower-level policy templates to develop procedures for specific security topics.
All resources on this page are provided to Cyber Leadership Hub members under license from third parties including Info-Tech Research Group Inc, a global leader in providing IT research and advice.