Security policy image


Ruskwig - Realistic Useable Sample Knowledge, Workable Information and Guidance.

On this site you will find sample security policy templates which you can download and modify to meet the requirements of your own organisation.

You will also find information relating to best practice in providing an IT Service. PRINCE2 for project management and ITIL for IT service delivery.

Information Security Policies

To protect their IT infrastructure and information organisations should develop and implement appropriate security policies.

Any security policy will need to be complete, up to date and reflect the organistions needs. The security policy should mitigate the risks faced by the organisation and determine appropriate controls.

Organisations are advised to adopt ISO 27001 'Information Technology - Code of Practice for Information Security Management' as a basis for their security policies.

Once the security policy has be written it needs to be put in place within the organisation. It needs to be communicated to employees, contractors and other personnel to ensure that they undestand the security policy and what is required.