Security Policy

Posted on 2011-09-13
Last Modified: 2012-05-12
is there any good material which can help to write an Organization's IT Related (ISO 27001) policies like Security Policy, Internet usage policy, media access policy etc.

1) is there any ready to go templates
2) have any body shared ISO 27001 related SAMPLE policies on internet.
Question by:osloboy
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2

Expert Comment

ID: 36532187
Here is a start for different types of policies

Author Comment

ID: 36535771
thanks, what about professional  stuff

Expert Comment

ID: 36536297
what do you mean by professional stuff?
Moving data to the cloud? Find out if you’re ready

Before moving to the cloud, it is important to carefully define your db needs, plan for the migration & understand prod. environment. This wp explains how to define what you need from a cloud provider, plan for the migration & what putting a cloud solution into practice entails.


Author Comment

ID: 36537765
out of box, ready to go. like what you say about
LVL 64

Accepted Solution

btan earned 500 total points
ID: 36561257
As you clearly pointed out the link, you can find couple of template link for policy write up @

E.g The State of California Information Security Office released an Information Security Program Guide for State Agencies - in effect a guideline on implementing ISO/IEC 27002 for US government entities @

You can find out more samples from their official site (look at "Information Security Policy Templates", "Acceptable Use") @

btw, it is very close to NIST SP800-53. If you are interested, below is a link that shared template on mapping both @


Author Closing Comment

ID: 36579538

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Article by: Justin
In light of the WannaCry ransomware attack that affected millions of Windows machines, you might wonder if your Mac needs protecting. Yes, it does and here is how to do it.
The recent Petya-like ransomware attack served a big blow to hundreds of banks, corporations and government offices The Acronis blog takes a closer look at this damaging worm to see what’s behind it – and offers up tips on how you can safeguard your…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question