Search Results

Who's behind this website? Explore our credentials, expertise and interests. Find out what makes us tick. About us IsecT Limited (sec urity in IT ) is an independent freelance consultancy, specialising in information risk and security management. We have a keen interest in the human aspects as much as the technology , with a strongly pragmatic business perspective. We help you protect and exploit information, enabling your business do things that would otherwise be too risky. We add value in areas such as: Information, IT and cyber risk and security management in general Preparing security strategies and plans plus business cases, project proposals and budgets Writing and customising security policies, procedures and technical documentation Security metrics - figure out what to measure, how , when and why Security awareness and training - creative, motivational content, briefings for executives and directors, awareness programme planning and rejuvination Designing and implementing ISO27k I nformation S ecurity M anagement S ystems Governance arrangements - corporate structures, reporting lines, accountabilities, roles and responsibilities Assurance - IT and ISMS internal audits, management reviews, gap analyses and supplier assessments Benchmarking and maturity scoring of your information risk and security Interim management of information risk and security, cybersecurity or IT audit teams temporarily short of a leader Mentoring/coaching for CISOs, on-demand support and guidance. From our base in rural New Zealand, we serve organisations worldwide, of all sizes and industry sectors. We have supplied government and commercial customers, not-for-profits and charities, consultancies and professional services companies, cloud-based and bricks-and-mortar businesses, greenfield start-ups and mature multinationals. We have worked with utilities, banks & financial services, defence, manufacturing and hi-tech companies. Sec Aware builds on our experience and expertise. We know the subject inside out. It's our passion. Read more about IsecT CEO Gary Hinson on LinkeDin . Gary has been in the security and audit trenches since the 1980's, consulting since the start of the millennium. Track the Sec Aware blog to see what has caught our beady eyes lately. Join the ISO27k Forum at ISO27001security.com for frequent updates on the standards plus free advice and content from the active global community of 5,000 professionals.

Free guidelines on a variety of information risk and security management topics Free downloads! Click an image to d ownload th e materials. ISO27001 mandatory document templates Starter toolkit - FREE Pragmatic ISMS implementation guideline 40 pages May 2025 Pragmatic guidance on ChatGPT risks and controls 24 pages Apr 2023 Smarten-up your ISMS with custom controls 4 pages August 2025 Adaptive SME security guideline 53 pages July 2024 Professional services infosec guideline 20 pages Feb 2023 Using attributes for better infosec controls 26 pages Jun 2025 Secure the planet: ISO27k & climate change 11 pages Jan 2024 Please note that all our material s are covered by copyright law and are released under li cense . They ar e NOT public domain. You are NOT completely free to use o r share them as you wish.

A white paper about information security control attributes, with pragmatic advice on how to use them DOWNLOAD (PDF v1.7)