ISSP: Information Security Strategic Plan
DESCRIPTION
The service called “Information Security Strategic Plan” (ISSP) focuses on creating a strategic plan based on NIST Cybersecurity Framework best practices. This plan aims to list what should be the priorities of the business in the short, medium and long term in terms of information security and cybersecurity.
Why is it important
Making decisions related to the investments that an organization must make in cybersecurity is not easy. There are many cybersecurity standards, best practices, and controls that any organization can implement; however, it is important that before making a decision they ask themselves: will this decision help the business to improve its level of maturity in cybersecurity? The PESI service seeks to support organizations in making those decisions by delivering a personalized plan that will define what the business’ cybersecurity priorities should be based on their current level of maturity and industry best practices.