Solutions and Insights
Tackle your security challenges with our trusted solutions and valued insights.
Research
Cyber Awareness: Kickstart your security culture
Trusted insights in an easy-to-share format designed to accelerate CISOs and their team's ability to build a resilient security culture.
Download now
ISF: Your first line of defence in safeguarding your organisation
A resource centre with digital and downloadable resources dedicated to supporting your organisation in its journey to become resilient by design.
Read more
ISF: Your first line of defence in supplier security risk management
A lot of organisations have outsourced to a third party and so they feel as…
Read moreTools
ISF Indicative Mapping between NIST Cybersecurity Framework 2.0 and 1.1
Gain clarity on the latest NIST Cybersecurity Framework (NIST CSF) updates with ISF's comprehensive mapping document.
Read more
Supplier Security Suite
Rise to the supplier risk challenge with a risk-based approach to your end-to-end supplier management lifecycle.
Read more
Information Risk Assessment Methodology 2 (IRAM2)
A simple, practical, yet rigorous approach to risk assessments, enabling organisations to speak a common language with key stakeholders.
Read more
Gain unlimited access to our comprehensive research, reports, and tools
Become a Member todayServices
ISF Services Overview
Read more
Human-Centred Security Assessment
Determine the reasons behind poor security behaviour and engage your workforce to better protect your organisation with expert ISF support.
GET IN TOUCH
Strategic Threat Analysis
Review and sharpen your cyber security roadmap and create a board-ready outcome to present your strategy to senior stakeholders.
GET IN TOUCHPodcasts
BONUS: Brian Lord - AI, Mis- and Disinformation in Election Fraud and Education
In this throwback conversation, Brian Lord, CEO of PGI gives his assessment of AI cyber security threats during election years.
Clean Energy: A CISO’s perspective on cyber security challenges
David Weisong, CIO at Energy Solutions, shares his experiences overseeing a full migration of the company’s security framework.
Threat Horizon: Net gains and losses
auDA's Sophie Mitchell, Mathew Finch from Oxford's Said School, and Mark Ward explore the potential shifts in internet governance and examine who stands to benefit or lose.
Events
6th Cyber Exchange 360: Talk to the Board!
Join a reciprocal dialogue between Enterprise Board Directors and forward-thinking CISOs and information security practitioners.
ISF World Congress, Orlando 2024
Explore the future of global cyber security at the industry’s must-attend event for senior executives and cyber leaders.
Good AI Gone Bad - A Zero Trust Story
In this session we will be focussing on AI adoption, key challenges for CISO and cyber managers and how to plan for business continuity.
Videos
ISF Interview: Steve Durbin talks cyber resilience and business continuity
ISF Chief Executive Steve Durbin offers his perspective on the global landscape and prepares organisations for the challenges ahead.
Watch now
Takeaways From the Security Middle East Conference 2023
Daniel Norman highlights his key takeaways from the Security Middle East Conference; exploring what the future holds for cyber in the region.
Watch now
Benchmark in Bitesize
Gain a comprehensive view of how ISF can support you in reviewing performance against your industry peers and industry frameworks.
Watch nowNews
Technology Governance Needs a Rethink on Prioritising Resilience Against Digital Threats
Research shows that only 3% of businesses have developed true resilience against cyber threats. ISF CEO Steve Durbin shares primary reasons for this disparity.
EXPERT OPINION: Stop Talking About Security Awareness - Let's encourage secure behaviour and culture instead
ISF Expert Richard Absalom explores why organisations need to move beyond awareness; sharing guidance on how to focus on security culture instead.
Building A More Behavior-focused Security Awareness Program
Steve Durbin shares seven recommendations on how organisations should approach their awareness and security culture programs.