~3-page information security policy template on digital (electronic) forensics.
This policy concerns the collection, analysis and use of forensic evidence relating to/arising from digital data, IT systems, cyber incidents etc. 'Forensic' means suitable for presentation in court, and implies strict controls for gathering/handling, analysing, storing and communicating the evidence.
Digital forensics work must be conducted solely by suitably qualified and competent experts using appropriate digital forensics tools and following formal procedures.
Ineptitude, corner-cutting and careless work can easily discredit and hence destroy the value of forensic evidence, potentially decimating any court cases, disciplinary actions etc. that depend upon it.
Setting-up the organisation to achieve the necessary professionalism and competence is no mean feat, a substantial governance issue in its own right. Even employing third-party forensics specialists is no guarantee that they are in fact competent, capable, diligent and trustworthy (buyer beware!).
Note: this is not legal advice!
Supplied as an MS Word document, readily customised for your organisation's specific situation.
top of page
bottom of page