LLexicon Workbenchv2.1
NouncandidateMWEcandidate
home/glossary/information security policy

information security policy

nounid 2883·updated May 9, 2026
candidate
GlossaryL1 — whatDictionaryL2 — how usedThesaurusL3 — relationsUniversaleverything

The rules and guidelines of an organization on how to ensure the confidentiality, integrity, and availability of the organization's information.

MWE

Classifications

per-axis with provenance

Entity Type

Requirement90%rule-basedr:entity.requirement.policy.v1

Sensitivity

unclassified

Information Class

unclassified

Variants

4 surface forms
synonym
policies for information security
plural
information security policies
possessive
information security policy's
pluralpossessive
information security policies'

Framework definitions

9 senses across 9 frameworks
National Initiative for Cybersecurity Careers and Studies (NICCS) Cybersecurity Lexicon1 senseview framework →
§1
An aggregate of directives, regulations, rules, and practices that prescribe how an organization manages, protects, and distributes information.
NIST Cybersecurity Framework1 senseview framework →
§1
The rules and guidelines of an organization on how to ensure the confidentiality, integrity, and availability of the organization's information.
FFIEC IT Examination Handbook - Audit, April 20121 senseview framework →
§1
The rules and guidelines of an organization on how to ensure the confidentiality, integrity, and availability of the organization's information.
NY DFS Part 500 (NYCRR Title 23, Chapter 1, Part 500)1 senseview framework →
§1
The rules and guidelines of an organization on how to ensure the confidentiality, integrity, and availability of the organization's information.
NISTIR 7298: Glossary of Key Information Security Terms, Revision 21 senseview framework →
§1
Aggregate of directives, regulations, rules, and practices that prescribes how an organization manages, protects, and distributes information.
CNSSI-4009 (Glossary of Information Assurance Terms)1 senseview framework →
§1
Aggregate of directives, regulations, rules, and practices that prescribes how an organization manages, protects, and distributes information.
NIST SP 800-531 senseview framework →
§1
Aggregate of directives, regulations, rules, and practices that prescribes how an organization manages, protects, and distributes information.
NIST SP 800-371 senseview framework →
§1
Aggregate of directives, regulations, rules, and practices that prescribes how an organization manages, protects, and distributes information.
NIST SP 800-181 senseview framework →
§1
Aggregate of directives, regulations, rules, and practices that prescribes how an organization manages, protects, and distributes information.

Outgoing relationships

term as subject — 1 triple
related

Incoming relationships

term as object — 0 triples
No incoming triples
No other term currently asserts a relationship to this one.
snapshot nexus-lexicon@liveschema v0.3.3-draftfetched May 14, 2026, 02:55 AM