Writing IT and cybersecurity policies and procedures training course

IT and cybersecurity focused exercises

The exercises in this course are based on some of the common IT and cybersecurity policies and procedures that most organisations need to write.

Virtual Classroom

Learn how to create clear and effective IT and cybersecurity policies and procedures

Cherryleaf’s Writing IT and Cybersecurity Policies and Procedures course teaches you how to write clear and effective policies and procedures for the IT department, in a straightforward and efficient way.

Who is this for?

This course is for anyone involved in writing or editing general IT and cybersecurity related policies and procedures.

For example:

  • email and Social Media policy
  • Use of portable media storage
  • Anti-virus
  • Business As Usual policies / business continuity management
  • System integrity and backups
  • Information security
  • Risk assessments
  • Asset management and disposal
  • Access control, new users, staff leavers procedures
  • Physical and environmental security
  • Operations security
  • Communications security
  • System acquisition, development and maintenance
  • Supplier relationships
  • Information security incident management

It is for people who are:

  • Having to deal with policies and procedures that overlap, repeat or contradict each other
  • Dissatisfied with the performance of their policies and procedures
  • Having trouble getting colleagues to understand the differences between policies, processes and procedures

Topics covered

Introduction

What do we mean by policy/process/procedure?

  • What are policies, processes and procedures and why do you need them?
  • Policies
  • Processes
  • Procedures
  • Common IT and cybersecurity related policies, processes and procedures

What can help us write good policies and procedures?

  • Knowing your audience
  • Writing for different audiences (internal and external)
  • Research
  • How much detail do they want/need?
  • What exactly do they need to know?

Outlining and planning the document

  • How to structure and organise the content to assist users in finding what they are looking for

When to write a policy

Review process

  • Verification
  • Validation
  • Editing
  • Proofreading
  • Approval

Writing the policies and procedures

  • Overview

Topic/Page layout

  • Topics and chunking
  • Headings and labels

Using clear English

  • What do we mean by clear English?
  • How do we write in clear English?
  • Words to avoid and their alternatives

How to structure a procedure

  • Presenting different types of information
  • Organising the content on a page/screen

Software tools

  • Using Microsoft Word
  • Alternatives

Duration and delivery format

This course is currently offered to your staff teams as a virtual classroom course, delivered over Microsoft Teams or Zoom. The course is split into two sessions of 3 hours each, delivered on different days.

Our expertise

Cherryleaf has experience in:

  • Writing and editing IT and cybersecurity related policies and procedures documents for clients, and
  • Teaching procedures writing skills to staff within organisations.

Price

The prices for the group courses depend on the number of delegates taking them. If you have a rough idea of numbers, then we can put together a quotation for you.

Contact us for more information

contact cherryleafUse our training services contact form to tell us more.

If you can’t see the course you want, we may still be able to meet your needs.