Guidance

Security policy framework

The standards, best practice guidelines and approaches that are required to protect UK government assets.

Documents

Security policy framework, April 2014

HTML

Security Policy Framework, April 2014

PDF, 296KB, 11 pages

Detail

The security policy framework describes the standards, best-practice guidelines and approaches that are required to protect UK government assets (people, information and infrastructure). 

It focuses on the outcomes that are required to achieve a proportionate and risk-managed approach to security that enables government business to function effectively, safely and securely.

• Published: 1 April 2013
• Updated: 7 July 2014

+ full page history

• 7 July 2014 6:00pm: Contractual process document updated.
• 24 June 2014 9:52am: Added 'Contractual process - forms' document.
• 17 June 2014 2:59pm: Added HTML version of the Security Policy Framework.
• 3 June 2014 8:30am: Updated (April 2014) Security Policy Framework published; 'Understanding the Security Policy Framework' removed as it related to the old version of the Framework.
• 2 April 2014 12:16am: The following documents have been updated with the latest (April 2014) versions: HMG Baseline Personnel Security Standard (previous update: Oct 2013) HMG Security Policy Framework (previous update: Oct 2013) Contractual process (previous update: April 2013) Industrial security: departmental responsibilities (previous update: April 2013) Security requirements for list x contractors (previous update: April 2013)
• 11 November 2013 9:00am: Updated HMG Security Policy Framework and associated documents with October versions
• 23 October 2013 10:48am: Added 'Supplier Assurance Framework' - a good practice guide for departments.
• 1 April 2013 1:00am: First published.

• From: Cabinet Office
• From: Government Security Profession
• From: National security and intelligence
• Part of: Government security
• Part of: Emergency planning