Companies expecting increased compliance requirements
Source : Thomson Reuters
Companies files properly protected on average
Source : Varonis
Attack rate among small businesses (highest rate among businesses)
Source : Symantec
Document control at the heart of the strategy
The document control process plays a key role in an organization’s information security strategy. Having a complete, clear, accurate, and up-to-date body of documentation that can be easily consulted by employees will allow the organization to successfully carry out its mission.
HumanOne offers to help you create your reference framework and your body of information security documentation.
Information loss is the most costly component following a cyberattack, with an average cost of 5.9 M$.
Source : Accenture
Framework for Information Security
The framework consists of the following documents :
- General Information Security Policy: A document that describes all the principles that govern Information Security rules within a reference framework.
- Thematic security policies, which describe the operational rules by security theme.
- Directives: a document that sets out the lines of conduct, rules and principles to be respected in order to carry out activities
- Operational security procedures: all the processing methods specified for carrying out an activity
- Guides and operating methods, guaranteeing the conformity of operations.
- Security charters (user, administrator, service provider, trainee, etc.)
