Information Security Policy Review

The Information Security Policy Review service is currently offered free-of-charge. The service provides a review of the submitted policy document(s) against current best practice and standards, such as ISO 17799. Each submission is reviewed by a senior information security consultant, who will contact you with an assessment of the policy state and any recommendations for amendments based on factors such as your organisation's industry sector.


About your organisation

Company Size?

In what regions does your company operate? (tick all that apply)

Is your company regulated by the FSA?

How many people are in your organisation's infosec team?

About Your Existing Policy

Do you have any plans to become certified against 27001?

Does your organisation utilise any of the following standards/control sets/best practices? (tick all that apply)

Do you have a separate Acceptable Use Policy/Agreement for employees to sign?

When was the last time a risk assessment was conducted in your organisation?

Do you feel that your information security policy reflects the risks faced by your organisation?

When was the last time your organisation provided information security and/or compliance awareness training to staff?

Additional notes

Attach Your Organisation’s Security Policy

In this next section, you will choose the file which contains your information security policy to be reviewed. For policies which are spread across multiple documents, please archive the documents into a single file and upload that file. Please ensure that this file is not password protected or otherwise locked.

Allowed file types are:

  • Microsoft Word (.doc, .docx)
  • Adobe Acrobat (.pdf)
  • Archive File (.zip, .rar, .tar, .tgz, .tar.gz or .bz2)

Please click browse and select

Maximum file size is 10MB.

User agreement

I understand that the information I have given above will be used to help CIO Consulting perform the security policy healthcheck. I warrant that I am duly authorised to submit a copy of my organisation's security policy and that in doing so am not breaching any duty of confidentiality. I agree to allow CIO Consulting to contact me with the results of the healthcheck. I agree that CIO Consulting is under no obligation to perform the service and that no guarantees of any kind are made as to response time, quality or fitness for purpose. I understand that the free security healthcheck scheme may be withdrawn at any time and without prior notice.

Data Privacy

All information you provide to us will be held in the strictest of confidence and not disclosed to any third-party unless required by law.

Your details may be used by CIO Consulting to send you materials which we believe might interest you. If you do not wish to receive additional materials, please tick this box . If at any time you wish to be removed completely from our database of contacts, please send notification in writing to dataprivacy@cioconsulting.com

After clicking the submit button below, please allow time for your policy file to be uploaded. On successful receipt of your document, a confirmation page will be shown. If the confirmation page is not shown, please contact technical support on policyreview@cioconsulting.com.

Site Designed By Top Left Design