Policy Templates - Page 2

JoeB_IG · ‎11-29-2022

Hello,

After 18 months as an auditor, I have been hired as the only cybersecurity person in a 1000+ organization. I have been tasked, among other things, to draft various security policies.

Is anyone aware of a repository of policy templates? For example, "Incident Response", "Access Control", "Configuration Management", etc. I am trying to align the org with 800-53; I don't need content, I need structure/format. Does that make sense?

Thanks!

LixtoSezcano · ‎06-15-2023

+1 for the SANS Templates

ApusJ · ‎06-28-2023

You have enough information in this post to prompt chatgpt write the drafts for you.

ericgeater · ‎06-29-2023

@ApusJ Do you have enough trust that the policies you receive from ChatGPT will align to your enterprise, though?

-----------
A claim is as good as its veracity.

ApusJ · ‎07-02-2023

As an AI language model, I don't have any specific policies or alignment with any enterprise. I'm designed to provide information and assist with a wide range of topics based on the data I've been trained on. My responses are generated based on patterns and information contained in that data, as well as general knowledge up until September 2021.

If your enterprise has specific policies or guidelines, it's important to consult those directly to ensure alignment with your organization's standards and requirements. While I strive to provide accurate and helpful information, it's always a good idea to verify the information I provide with trusted sources and apply your own judgment and expertise.

ericgeater · ‎07-03-2023

"I'm designed"?! "I've been trained on"?! "...verify the information I provide"?!

Is someone feeding AI responses in this forum? Is this some kind of Turing test?

-----------
A claim is as good as its veracity.