This file may not be suitable for users of assistive technology.
Request an accessible format.
If you use assistive technology (such as a screen reader) and need a
version of this document in a more accessible format, please email email@example.com.
Please tell us what format you need. It will help us if you say what assistive technology you use.
The security policy framework describes the standards, best-practice guidelines and approaches that are required to protect UK government assets (people, information and infrastructure).
It focuses on the outcomes that are required to achieve a proportionate and risk-managed approach to security that enables government business to function effectively, safely and securely.
'HMG Security Policy Framework' document and HTML updated with new GDPR legislation
Contractual process document updated.
Added 'Contractual process - forms' document.
Added HTML version of the Security Policy Framework.
Updated (April 2014) Security Policy Framework published; 'Understanding the Security Policy Framework' removed as it related to the old version of the Framework.
The following documents have been updated with the latest (April 2014) versions:
HMG Baseline Personnel Security Standard (previous update: Oct 2013)
HMG Security Policy Framework (previous update: Oct 2013)
Contractual process (previous update: April 2013)
Industrial security: departmental responsibilities (previous update: April 2013)
Security requirements for list x contractors (previous update: April 2013)
Updated HMG Security Policy Framework and associated documents with October versions
Added 'Supplier Assurance Framework' - a good practice guide for departments.