Industry Good Standard definition
Industry Good Standard means the implementation of products and solutions, and the exercise of that degree of skill, care, prudence, efficiency, foresight and timeliness as would be expected from a leading company within the relevant industry or business sector.
Industry Good Standard means the implementation of products and solutions, and the exercise of that degree of skill, care, prudence, efficiency, foresight and timeliness as would be expected from a leading company within the relevant industry or business sector. “GSC” “GSCP” means the Government Security Classification Policy which establishes the rules for classifying HMG information. The policy is available at:
Industry Good Standard means the implementation of products and solutions, and the exercise of that degree of skill, care, prudence, efficiency, foresight and timeliness as would be expected from a leading company within the relevant industry or business sector. “GSC” “GSCP” means the Government Security Classification Policy which establishes the rules for classifying HMG information. The policy is available at: ▇▇▇▇▇://▇▇▇.▇▇▇.▇▇/government/publications/government-security-classifications “HMG” means Her Majesty’s Government “SPF” “HMG Security Policy Framework” This is the definitive HMG Security Policy which describes the expectations of the Cabinet Secretary and Government’s Official Committee on Security on how HMG organisations and third parties handling HMG information and other assets will apply protective security to ensure HMG can function effectively, efficiently and securely. “ICT” means Information and communications technology (ICT) is used as an extended synonym for information technology (IT), used to describe the bringing together of enabling technologies used to deliver the end-to-end solution IS5 this is HMG Information Assurance Standard No. 5 - Secure Sanitisation issued by CESG “ISO/IEC 27001” “ISO 27001” is the International Standard for Information Security Management Systems Requirements “ISO/IEC 27002” “ISO 27002” is the International Standard describing the Code of Practice for Information Security Controls. “ISO 22301” is the International Standard describing for Business Continuity “IT Security Health Check” “Penetration Testing” means an assessment to identify risks and vulnerabilities in systems, applications and networks which may compromise the confidentiality, integrity or availability of information held on that IT system. “Need-to-Know” the Need-to-Know principle is employed within HMG to limit the distribution of classified information to those people with a clear ‘need to know’ in order to carry out their duties. “OFFICIAL” “OFFICIAL-SENSITIVE” the term ‘OFFICIAL’ is used to describe the baseline level of ‘security classification’ described within the Government Security Classification Policy (GSCP) which details the level of protection to be afforded to information by HMG, for all routine public sector business, operations and services. the ‘OFFICIAL–SENSITIVE’ caveat is used to identify a limited subset of OFFICIAL information that could have more damaging consequences (for individuals, an organisation or government generally) if it were ...