Information Security Forum (ISF)

The Information Security Forum (ISF) is an independent organization dedicated to providing practical guidance, tools, and a collaborative platform to help organizations manage and mitigate information security risks. The ISF produce a number of proprietary tools and methodologies which are available to its members. Related pages Standard of Good Practice (SOGP)

1 min

ISF IRAM2

Context For professionals moving into governance roles within the financial sector or large multinationals, familiarity with proprietary frameworks is often as important as knowledge of international standards. While ISO 27005 establishes the principles of risk management, the Information Security Forum’s IRAM2 is frequently the specific implementation found in major institutions. You may not need to become a certified IRAM2 practitioner, but you should understand the structure if you intend to work in large-scale enterprise environments. ...

2 min

Standard of Good Practice for Information Security (SOGP)

The Standard of Good Practice for Information Security (SOGP), developed by the Information Security Forum (ISF), is a comprehensive information security framework that provides best practices and guidance for managing information security risks and ensuring resilient organisations. SOGP has been developed to be in line with similar industry frameworks. Further reading SOGP - ISF SOGP - Wikipedia

1 min