Navigation

Navigation Tips

Fastest way to find a specific policy

From the home page click on the user category and then on the policy required.

To find out what a word means

The Glossary page contains almost 200 definitions of words and jargon that are commonly used in conjunction with Information Technology.

To find a specific policy relating to a particular topic

The Topic Index has approximately 400 quick links to take you to a specific policy. The Index is categorised A-Z so click on a letter to go straight to the topics listed alphabetically.

For a brief overview of the purpose for each Policy

From the home page click on the Summary of Policies. While in this page clicking on any policy name will display the policy.

ISO 27002, SIGS, BS 25999 and SOX 404 Compliance

Clicking on one of the buttons found at the bottom of each policy statement will reveal compliance details with the relevant standard. Each link will take you to a reference that explains what the chosen clause in a particular standard means in audit terms. From there you can click on the number (eg 5.1.1) in the left hand column and this will reveal all policies that also comply with this part of the standard. Clicking on any of the policy links listed will take you to the policy statement. The same applies for all of the other best practice standards. Click here for pictorial help

By ascertaining that the policies meet the compliance requirements of each of the standards, and proving that the activities onsite are a true representation of what is documented in the policies, then compliance with the standards, and best practice is achieved.

Printing a Policy

From within any user category, click on the policy required and then click the words "Printable Version" on the right hand side at the top. A full version of the policy will be opened in Adobe Acrobat Reader in a new window. All printable versions of the documents are in pdf format and will print on A4 paper in portrait orientation.

Hyperlinks

Hyperlinks have been created to other references which relate to the policy. The following symbols may be used to identify the categories below:-

Link to an internal form, document or a log

Help

Explanation

Where another Information Systems policy relates to, or expands on the subject

Link to a procedure

Reference to the ISO 27002:2005 Information Technology Code of Practice

Reference to Security in the Government Sector (SIGS) Policy

Reference to BS 25999

Reference to PCI DSS Standard

Reference to SOX Section 404

Where another corporate policy has a connection with the Information Systems policy

Link to an external website

Clicking a link will open the new information in the same window. Clicking the "Back" button on the browser will take the user back to the previous screen.