A benchmark for your security efforts

The Information Security Forum (ISF) has released an updated Standard of Good Practice, a free guide best-practices sort of guide that organizations can use to assess the security of their systems. The standard is updated every two years. It may be a good to see how you stack up and document. In various situations, you may need to demonstrate that your systems follow accepted industry standards. It will help you make the case that the security aspects are in line with Sarbox and other regulations. Article | The standard itself