Security policy

Security policy

Do you want a security policy that involves and inspires your employees? Then let it be more than just another book on the shelf. Instead, choose a pragmatic approach. SpotIT helps you to develop your security policy and to make it a success in your organization. Our ISO 27001-certified engineers also help you prepare for an eventual ISO audit.

Technology and common sense 

For SpotIT, a security policy is a matter of common sense and the right technology. With regard to the latter, we opt for a combination of a COBIT framework  (Control Objective for Information and Related Technology) with a number of legal standards (ISO, SOX, NIST, etc.). This is how we arrive at an achievable security policy tailored to your company.

Written Information Security Plan (WISP)

COBIT enables us to compare the maturity of your organization’s information security with companies in your sector and with your own objectives. This allows us to draw up an Information Security Action Plan (ISAP) to increase the maturity of your organization’s information security.

We combine this ISAP with your legally required standards for drawing up a Written Information Security Plan (WISP). The WISP not only contains your security policy, but also helps your employees to comply with this policy by giving them all the information they need for this: practical examples, templates for reporting incidents, etc.

swoosh top grey

Time to talk?


Do you want to know how your security and network are doing?

With an in-depth audit we map out your security challenges and your entire network.