In the 1990s, the Information Security Forum (ISF) published a comprehensive list of best practices for information security, published as the Standard of Good Practice (SoGP). The ISF continues to update the SoGP every two years; the latest version was published in 2011.
Originally the Standard of Good Practice was a private document available only to ISF members, but the ISF has since made the full document available to the general public at no cost.
Among other programs, the ISF offers its member organizations a comprehensive benchmarking program based on the SoGP. Furthermore, it is important for those in charge of security management to understand and adhere to NERC CIP compliance requirements.
Read more about this topic: Cyber Security Standards
Famous quotes containing the words standard and/or practice:
“An indirect quotation we can usually expect to rate only as better or worse, more or less faithful, and we cannot even hope for a strict standard of more and less; what is involved is evaluation, relative to special purposes, of an essentially dramatic act.”
—Willard Van Orman Quine (b. 1908)
“In my practice I’ve seen how people have allowed their humanity to drain away. Only it happens slowly instead of all at once. I didn’t seem to mind.... All of us, a little bit. We harden our hearts. Grow callous. Only when we have to fight to stay human do we realize how precious it is to us, how dear.”
—Daniel Mainwaring (1902–1977)