( = Standard of Good Practice for Information Security,
"infoturbe heade tavade standard")

olemus
näidis-infoturvapoliitika (ISF , alates 2011), põhineb headel tavadel ja ühildub tunnustatud standarditega ISO/IEC 27002, COBIT 5, PCI DSS, NIST Cybersecurity Framework

Wikipedia:
a business-focused, practical and comprehensive guide to identifying and managing information security risks in organizations and their supply chains

ülevaateid
https://en.wikipedia.org/wiki/Standard_of_Good_Practice_for_Information_Security

https://www.securityforum.org/solutions-and-insights/standard-of-good-practice-for-information-security-2020/

https://www.wallarm.com/what/standard-of-good-practice-for-information-security-sogp-full-guide