organizational policy template
Working in information security, you are often faced with a task such as drafting a policy, looking up different standards, or what cyber security best practices to recommend on mitigating a particular risk. You do not need to start from scratch if you know where to look for a template that can be modified to suit the situation in your organization.
Here are top 5 that i have used in the past in no particular order- National institute of Standards and technology (NIST) cybersecurity publications that are available free to download covering all cybersecurity related topics to keep an organization secure.
- SANS policy templates. Sample policies that include accceptable use, clean desk, data breach response, disaster recovery, email, ethics, awareness etc can can easily be modified to suit the needs of your organization
- Cybersecurity and Infrastructure Security Agency (CISA), especially the Shields-up and uscert publications pages are filled with advice when implemented does keep attackers away from business critical data.
- ISO 27001 and ISO27k websites that is full of downloadable templates of all ISO 27001 controls and everything related with implementing an Information Security Management System (ISMS).
- The European Union Agency for Cybersecurity (ENISA) contributes to EU cyber policy, enhances the trustworthiness of ICT products, services and processes. Similar with NIST publications on cybersecurity.
- No More Ransom. Great website with free decryption tools for several kinds of ransomware. Its a great resource that can lessen the impact of a ransomware attack. A number of organizations have had critical business data stolen and have paid huge ransoms to cyber criminals to recover from the attack.
Let us know in the comment what resources you use and share with your network
Read more:
Comments
Post a Comment