Search - National Standard Microsite

to add a new content

Filter/Order

Status

Help

Status describes what stage of the lifecycle a standard is at:

Draft - This National Standard workstream is resourced, has clear outputs and is actively in development
Review - The National Standards Assurance Board are currently reviewing this National Standard
Consensus - The category community are now being encouraged to review and give feedback on this National Standard
Live - This National Standard has been through the established process and is now live, being reviewed at least annually
Retired - This National Standard has been retired and is present for historical reference only

Classification

Help

National Standards can be classified based on whether they are conceptual, rule based or value based:

Principles - The defining characteristic of a principle document is that it is conceptual. It describes a target state or end goal without specifying how it will be achieved.
Guidance/Policies/Standards - The defining characteristic of guidance, policies and standards are that they are rule based. The document specifies the rules to be applied to achieve a particular state.
Technical Reference Templates - The defining characteristic of a template is that it is value based. It specifies exactly the values that must be used.

Grade: PMR

Help

National Standards graded 4Pol are standards which meet the below criteria and should be considered first, before any other standard in that category, as they fit the National Policing Digital Strategy allowing forces and suppliers to converge on a single set of standards.

4Pol Criteria:

Support minimum legal requirements where they exist
Align with the National Policing Digital Strategy to ensure strategic alignment and design
Align with the TechUK Justice & Emergency Services Interoperability Charter to deliver better data sharing, exchanging and exploitation
Direct relevance and applicability to policing
Represent best practice
Able to be measured and achieved within the unique landscape of policing

Grade: LMR

Help

National Standards graded MLR stem directly from legislative requirements, such as the General Data Protection Regulation (GDPR) standards. These are National Standards which represent the minimum requirements to ensure that data and technology in use is operated in a lawfully compliant manner. These should be considered the baseline in applicable categories.

Internally Amended / Developed

Mobilisation APP

With the Police responding to critical and complex incidents, sometimes these incidents may require resources that go beyond the capacity and capability of the Police force. Some of these incidents may require the need of other partner agencies, other specialist skillsets and equipment and thus would need to be effectively managed and coordinated. Mobilisation is the process which supports mutual aid, at the local, regional or national level.

The National Police Coordination Centre (NPoCC) is responsible for the mobilisation of police assets, including general policing, operations and crime business areas. A lead force will be responsible for resourcing nationally-led crime enquiries. NPoCC should be the initial point of contact for any mobilisation requirements as it can provide advice and national coordination.

It is important to note that this a challenging area of work, particularly when the length of the investigation is unknown and mobilising crime assets is a new and emerging business field (mutual aid) for the Police service.

Published 01/01/2014

Authoring body: College of Policing (CoP)

Guidance

ISS4PS Annexes Volume 2

This document was retired in July 2021

The Information Systems Strategy for the Police Service (ISS4PS) is an overarching strategy for Information and Communications Technology (ICT) and Information Systems (IS) for the Police service across the whole of England and Wales. Volume 2 Annexes helps to define and establish a list of standards and should be used a requirements for new developments within the Police Service.

Annex contains guidelines and actions points for:

1. Establishing ISS4PS standards information base (SIB)

2. Actions and guidance for IT Directors

3. ISS4PS compliance to the architectural principles

4. Guidelines for National Programmes focusing on 3 critical ISS4PS policies (Establishing Foundations, Delivering Joined-up Services and Delivering National Initiatives)

5. Criteria's for corporate and national solutions developed or procured by the Police Force

6. Summary of Principles and actions defined in 'Implementing ISS4PS Volume 2'

Published 01/01/2005

Authoring body: Association of Chief Police officers (ACPO)

Principles

ISO/IEC 27003:2017 Information Technology — Security techniques — Information Security Management Systems — Guidance

ISO (the International Organisation for Standardisation) and IEC (the International Electrotechnical Commission) form the specialised system for worldwide standardisation. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organisation to deal with particular fields of technical activity. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1.

This document was created to provide guidance on the requirements for an information security management system (ISMS) and provides recommendations, possibilities and permissions.

The following areas are very important for ISMS:

understanding the organisation’s needs and the necessity for establishing information security policy and information security objectives;
assessing the organisation's risks related to information security;
monitoring and reviewing the performance and effectiveness of the ISMS
practising continual improvement

The ISMS also has key components such as policies, defined responsibilities, documentation and management processes pertaining to policy establishment, planning, implementation, operation, performance assessment, management review and improvement.

Published 01/01/2017

Authoring body: International Organisation for Standardisation (ISO)

Standards

ISO 90011:2018 Guidelines for Auditing Management Systems

This document informs the creation of auditing systems.

With many organisations now wanting to combine a number of management systems into one, there has been awareness to also combine auditing capabilities into one for these management systems. As a result the international standard BS EN ISO: 19011:2011 has created this standard to provide organisations the knowledge for auditing modern management systems, the principles and guidance to ensuring they deliver a high standard of auditing capabilities and that organisations do not fail which could have damaging effects such as losing out on contracts, certifications, and operational efficiency.

Organisations can save vast amount of time, money and resources, by applying a single approach to multiple management systems by streamlining their auditing processes and removing duplication of effort.

This document shed insights into planning, decision-making and evaluating audits.

The standard includes (but not limited to:

Scope
Principles of Auditing
Managing an audit programme
Establishing the Audit programme
Implementing the audit programme
Monitoring an audit programme
Reviewing and improving the audit programme
Conducting audit activities
Preparing audit report
Conducting audit evaluation
And much more

Fee applies of £254.00 (members price: £127.00) for accessing the standard.

Published 01/01/2018

Authoring body: British Standards Institution (BSI)

Standards

ISO/IEC 27003:2017 Preview

This document provides guidance on the requirements for an information security management system (ISMS) as specified in ISO/IEC 27001 and provides recommendations (‘should’), possibilities (‘can’) and permissions (‘may’) in relation to them. It is not the intention of this document to provide general guidance on all aspects of information security.

Clauses 4 to 10 of this document mirror the structure of ISO/IEC 27001:2013.

This document does not add any new requirements for an ISMS and its related terms and definitions. Organisations should refer to ISO/IEC 27001 and ISO/IEC 27000 for requirements and definitions. Organisations implementing an ISMS are under no obligation to observe the guidance in this document.

An ISMS emphasises the importance of the following phases:

understanding the organisation’s needs and the necessity for establishing information security policy and information security objectives;
assessing the organisation's risks related to information security;
implementing and operating information security processes, controls and other measures to treat risks;
monitoring and reviewing the performance and effectiveness of the ISMS; and
practising continual improvement.

Published 01/01/2017

Authoring body: International Organisation for Standardisation (ISO)

Standards

Showing 66 to 70 of 204 entries.

Previous Page
Page1
Intermediate Pages
- Page2
- Page3
- Page4
- Page5
- Page6
- Page7
- Page8
- Page9
- Page10
- Page11
- Page12
Page13
Page14
Page15
Intermediate Pages
- Page16
- Page17
- Page18
- Page19
- Page20
- Page21
- Page22
- Page23
- Page24
- Page25
- Page26
- Page27
- Page28
- Page29
- Page30
- Page31
- Page32
- Page33
- Page34
- Page35
Page41
Next Page

Police Digital Service National Standards

Search - National Standard Microsite

Mobilisation APP

ISS4PS Annexes Volume 2

ISO/IEC 27003:2017 Information Technology — Security techniques — Information Security Management Systems — Guidance

ISO 90011:2018 Guidelines for Auditing Management Systems

ISO/IEC 27003:2017 Preview

Knowledge Hub

Quick links

Partners

Contact us