Infor­ma­ti­on secu­ri­ty poli­cy tem­p­la­te in accordance with ISO 27001:2022

Infor­ma­ti­on secu­ri­ty poli­cy tem­p­la­te in accordance with ISO 27001:2022

 720,00

excl. VAT

The Information Security Policy template, also known as InfoSec Policy, is a complete guideline of all the requirements of ISO 27001 Annex A, with the exception of the requirements for users, which is outsourced to the user guideline.

It is a guideline according to ISO/IEC 27001:2022 in the new structure with the chapters A5 Organizational measures (37 controls), A6 Personnel-related measures (8 controls), A7 Physical measures (14 controls) and A8 Technological measures (34 controls).

Compared to ISO 27001:2013 and the corrected version 27001:2015, some controls have been combined, but 11 new controls have been added that are already included in the information security guideline.

The template comprises around 65 pages and has already been tested several times in ISMS / ISO 27001:2022 certifications.

SKU: N/A Category:

Description

The tem­p­la­te is fle­xi­bly cus­to­mizable and includes stan­dard mar­ket spe­ci­fi­ca­ti­ons in the are­as of:

  • Orga­niza­tio­nal security
  • Per­so­nal security
  • Phy­si­cal security
  • Tech­no­lo­gi­cal security

The fol­lo­wing secu­ri­ty mea­su­res have been added:

  • Infor­ma­ti­on about thre­ats (thre­at intelligence)
  • Infor­ma­ti­on secu­ri­ty for the use of cloud services
  • ICT rea­di­ness for busi­ness continuity
  • Moni­to­ring of phy­si­cal security
  • Con­fi­gu­ra­ti­on management
  • Dele­ti­on of information
  • Mas­king of data
  • Pre­ven­ti­on of data loss (data leaka­ge pre­ven­ti­on, DLP)
  • Moni­to­ring of activities
  • Web fil­te­ring
  • Secu­re programming

All are­as are intro­du­ced by a defi­ni­ti­on of the pri­ma­ry tar­get group, which is respon­si­ble for imple­men­ting the requi­re­ments of this area. With this method, the infor­ma­ti­on secu­ri­ty gui­de­line can be imple­men­ted quick­ly and easi­ly in the com­pa­ny by invol­ving the rele­vant departments.

The ISO 27001 infor­ma­ti­on secu­ri­ty poli­cy tem­p­la­te was deve­lo­ped spe­ci­fi­cal­ly for small and medi­um-sized com­pa­nies and deli­bera­te­ly avo­ids split­ting the requi­re­ments into indi­vi­du­al docu­ments, such as a sepa­ra­te cryp­to­gra­phy poli­cy. All user-rela­ted requi­re­ments are not included in this tem­p­la­te, but in the ISO 27001 user poli­cy tem­p­la­te packa­ge, so com­pa­nies do not have to train their users on the cen­tral infor­ma­ti­on secu­ri­ty guidelines.

Lan­guage: Ger­man / English

Licen­se: Digi­tal tem­p­la­te in Micro­soft Office for­mat with right of use for one com­pa­ny. The tem­p­la­te may be modi­fied as desi­red. No resa­le, trans­fer or com­mer­cial use by con­sul­ting com­pa­nies is permitted.

Additional information

Sprache

Deutsch, Englisch

Das könnte Ihnen auch gefallen …

Related products

Go to Top