SecAware materials

SecAware logo 150 animated ezgif.gif

~3-page information security policy template on the development or acquisition of IT systems, software applications, cloud services etc.


The development and acquisition processes must ensure that IT systems developed in house or acquired from third parties incorporate suitable information security controls to mitigate unacceptable information risks ... implying the need to have understood the information risks well enought to specify security requirements. 


Valuable information associated with/arising from the development and acquisition process must also be protected.


Delivered as an editable MS Word document, easily customized for your organization's specific needs.

IT development and acquisition policy