SecAware materials

SecAware logo

~3-page information security policy template on electronic/digital forensics.


This policy concerns the collection, analysis and use of forensic evidence relating to/arising from digital data, IT systems, cyber incidents etc.


eForensics work must be conducted solely by suitably qualified and competent experts (whether employees or third-parties), using appropriate tools and following formal procedures.


Ineptitude, corner-cutting and careless work can easily discredit and hence destroy the value of forensic evidence, potentially decimating any court cases, disciplinary actions etc. that depend upon it.


Setting-up the organisation to achieve the necessary professionalism and competence is no mean feat, a substantial governance issue in its own right. Even employing third-party forensics specialists is no guarantee that they are in fact competent, capable, diligent and trustworthy (buyer beware!).


Note: this is not legal advice!


Supplied as an MS Word document, readily customised for your organisation's specific situation.

Electronic (digital) forensics policy

  • Information security policy template on on digital forensics (eForensics)


    See also the policy on incident management