Governance, Risk & Compliance - Templates & Policies

Security Awareness Training Procedural Policy

Formalize your security awareness and training program into a policy to ensure that your employees are held accountable.

Risk Assessment Procedural Policy

​The Risk Assessment Policy applies to all employees of the organization, including all temporary or contract workers.

Human Resources Security Policy – ISO

The purpose of this policy is to ensure personnel, including contractors, are aware of and understand their responsibilities in regards to security.

Access Control Policy – ISO

The purpose of this policy is to ensure users have the appropriate access levels specifically authorized to them to access information on systems and applications.

Physical and Environmental Policy – ISO

The purpose of this policy is to ensure proper measures are in place to prevent unauthorized physical access or damage to the organization’s information and facilities.

Communications Security Policy – ISO

The purpose of this policy is to ensure security is a key consideration in network management and in the transfer of information in and out of the organization.

Information Security Aspects of Business Continuity Management Policy – ISO

The purpose of this policy is to ensure that information security is properly addressed within the organization’s Business Continuity Planning (BCP) strategy.

Endpoint Protection Metrics Summary Template

Identify relevant metrics to assist in evaluating the success of your organization's endpoint protection process.

Mitigation Effectiveness and Gap Initiative Communication Deck

Use this template to present the results of your mitigation effectiveness assessment to your stakeholders.

Risk Management Program Manual

Formalizing a risk management program requires creating repeatable and iterative processes, and documenting best practices. Create a comprehensive manual to serve as the...
GET HELP Contact Us
×
VL Methodology