A comprehensive, coherent suite of information security policy templates, comprising:

The overarching corporate information security policy - a high-level management perspective on information risk and security based on ISO/IEC 27001, supported by ...
The topic-based policies - an integrated mesh of policies covering a deliberately wide variety of information security, risk, privacy and related matters;
A cross-reference matrix showing relationships between the topic-based policies (spreadsheet);
Acceptable Use Policies - less formal, more accessible guidance aimed at general employees, using examples to contrast acceptable against unacceptable activities (desktop and mobile editions).

The entire suite was conceived, written and maintained by a single professional. It has evolved over decades, gradually expanding in scope and changing in line with developments in the field. It is unique and exclusive to SecAware - not available elsewhere.

The policy templates:

Comprise the top two layers of the classical 'policy pyramid' shown;
Specify typical/good practice controls, inspired by ISO27k and other standards;
Share the same consistent structure, layout, format and tone;
Are essentially 'camera-ready' aside from any amendments required for your particular organisation;
Use MS Word styles, making it easy to change the formatting to suit your corporate guidance or preferences;
Form an interlocking mesh: they are designed to work together as a suite, supporting each other.

While some policies may not be applicable or relevant to your organisation, most of them probably are. Developing such a comprehensive, consistent and mature suite of polices from scratch would cost you much more than this, even taking account of any customisation, review and authorisation activities you may need.

Review and consider the templates carefully, adapting them where appropriate to suit your organisation's unique needs (e.g. your compliance obligations, risks and controls) and situation (e.g. to align with policies in related areas such as risk, IT and HR).

SecAware policy suite (deep discount)

$1,720.00

$602.00

An integrated suite of information security policy templates covering a wide range of topics.

EXTRA SPECIAL PACKAGE PRICE: buy the policies individually at $20 each, or grab the entire suite of 86 templates (!) for just $5 a pop.
"I attempted writing an information security policy manual for my organisation, however I got lost in the complexity. Then I found these templates. Using them was a piece of cake. The material was easy to tailor and meets all of our organisation's requirements."

"My direct management sighs when they see me with policy in hand, but at the same time are thrilled someone has taken the initiative for this. The material is excellent - one of the best investments I’ve made in my 15 years of IT Support. We are keeping everyone happy.”

"I would be completely stuffed without the policy manual." [thanks Brendan]

"Just wanted to give hou a quick update. We received the policy manual and it is very good, well worth the money. We are finding that for us it is very useful as a gap analysis tool since we have a regulatory landscape with multiple standards."
April 2024 - updates to cryptography, incident reporting, responsible disclosure, privacy compliance, ethics, archival, acquisition of information systems & services, and application development templates, plus Acceptable Use Policies

December 2023 - updates to incident management & whistleblowing templates

November 2023 - added a basic website privacy policy

October 2023 - AUPs extended with new sections for AI and sharing & collaborating

May 2023 - incident management policy updated to emphasise delegated authority for incident manager

April 2023 - minor updates to AUPs

March 2023 - new policy template on AI/ML e.g. ChatGPT

February 2023 - updated incident management and reporting policies

January 2023 - new policies on API security & microservices, and DNS security.

SecAware materials

SecAware policy suite (deep discount)

Overview

Third party use

Customer endorsements

Updated