Information Security Policy Templates

Welcome to the SANS Security Policy Resource page, a consensus research project of the SANS community. The ultimate goal of the project is to offer everything you need for rapid development and implementation of information security policies. You'll find a great set of resources posted here already, including policy templates for twenty-seven important security requirements.

Access the policies over at SANS here.


A security policy can either be a single document or a set of documents related to each other. It contains a description of the security controls and it rules the activities, systems, and behaviors of an organization.
A security policy template won’t describe specific solutions to problems. Instead, it would define the conditions which will help protect the assets of the company. It will also seek to protect the company’s ability to carry out business.

 Download 42 Information Security Policy Templates [Cyber Security] over here.


Comments