You are probably familiar with the term "Wiki", most notably from the very popular and easy to use Wikipedia online user-contributed encyclopedia. Wiki in the Hawaiian language means "fast", and the "backronym" Wiki has come to mean, "What I know is..."

Well, what Pivot Point Security has come to know in our wealth of experience is that development of a solid, fundamental Information Security policy is hardly a fast proposition. We believe that a Wiki is the ideal format to build and deploy an Information Security Policy in. We have developed a solidly built, easy to use Wiki-based Information Security policy template that is based upon two of the most widely adopted information security frameworks - Control Objectives for Information Technology (COBIT) and the well-known ISO17799: 2001 set of Information Security Best Practices.

This policy is free of charge to Pivot Point Security clients and offers them a substantial basis to craft an Information Security policy that will better help them align Business, Technology, Regulatory and fiduciary requirements and much more.

The PPS Information Security Policy Wiki uses TiddlyWiki, a webpage stuffed with special code which can be edited using an Internet browser. TiddlyWiki is a very cost effective way to create and deploy Information Security Policies throughout an organization from a centralized Web Server. The PPS Security Wiki enables you to have a dynamic, hyperlinked document clearly defining policies, standards, and procedures to which members of your organization must abide by and forms the basis for a strong control environment.

There are many benefits of housing Information Security Policies within a Wiki:

• Self-contained - no need for programs other than an Internet browser

• Easy to edit

• Centralized access via a Web Server

• Uncluttered - one can look at bite-sized chunks of information at a time rather than read through a long article in a linear fashion. One click closes all Tiddlers but the one you are reading

• Fast - you navigate quickly through the Tiddlers that you want to read, in the order that you determine

• Non-linear - instead of scrolling up and down long files or WebPages, the content is connected by hyperlinks

• Fully searchable

• Can be extended with a number of macros and plug-ins created specifically for TiddlyWiki

• Can be segregated to different user communities (e.g., management, consultants, employees, IT Staff)

The TiddlyWiki can be logically segregated into different sections documenting controls and regulations for different departments and/or applications. The functionality and flexibility of a TiddlyWiki allows for easy implementation and provides a centralized, searchable repository of Information Security policies, based off of best practices identified in ISO17799 and the Cobit 4.0 framework.

With customization of this template, any organization can bolster their Information Security Policy in regards to:

If you would like a complimentary copy of our Security Policy Wiki Starter template, simply fill out our Contact Form and a Pivot Point Security representative will be in prompt contact to provide you with the download link.