Austin Songer (Page 3)

Sign in Subscribe

ISO 27001:2022

ISO 27001:2022

The new version of ISO 27001 will be released sometime in the

SOC2 Vendor Management Policy

SOC2 Vendor Management Policy

Purpose and Scope * This policy defines the rules for relationships with the

SOC2 Workstation Policy

SOC2 Workstation Policy

List of Information Security Metrics to Track

Security Governance

List of Information Security Metrics to Track

Organizational * Information Security Budget as Percentage of IT Budget * Information Security Budget

Risk Catalogue

Risk Catalogue

RISK CATALOG use case: * What are the risks associated with a control

Threat Catalogue

Threat Catalogue

THREAT CATALOG use case: What natural and man-made threats affect control execution?

SOC2 Code of Conduct Policy

SOC2 Code of Conduct Policy

The purpose of this policy is to define expected behavior from employees

SOC2 Narrative Template Collection

SOC2 Narrative Template Collection

Building SOC2 Security Program (High Level) Roadmap

Building SOC2 Security Program (High Level) Roadmap

This is assuming you are starting from scratch and covering only SOC

ISO 27001 Statement of Applicability Template

ISO 27001 Statement of Applicability Template

Template for your ISO 27001 program. Loading...

Security Questionnaire - 1177 Questions

Security Questionnaire - 1177 Questions

All the Security Questionnaires Questions You Will Ever Need Security Questionnaire -

SOC2 Evidence - Population Lists

SOC2 Evidence - Population Lists

Sample of possible population lists from an auditor * List of all in-scope