Written Information Security Plan (WISP) is an overarching document describing an organization’s security program and defines documents and supports the implementation and maintenance of the administrative, technical, and physical safeguards relevant to the organization.  Your organization may be mandated to have a WISP by state and/or federal laws, such as Massachusetts Data Security Regulations, 201 CMR 17.01 -17.05, the Gramm–Leach–Bliley Act (GLBA), and the Health Insurance Portability and Accountability Act (HIPAA).

Although many organizations implement WISPs to be compliant with statutory and/or regulatory mandates, a WISP is a valuable tool for any organization interested in establishing a viable cyber security posture.

Contact our cyber analysts to discuss how a WISP could be beneficial to your organization’s overall security health.

Learn More About What We Can Do

Impervious Technology Services