ISO – International Standardization Organization

ISF – Information Security Forum

SOGP – Standard of Good Practice

PCI – Payment Card Industry

DSS – Data Security Standard

CSA – Cloud Security Alliance

Partially yes, some of the standards developers are publishing them for free, e.g. PCI DSS, NIST standards, CSA star questionnaires could be downloaded from respective vendor sites at no cost. However, some of the standards like ISO and ISF standards are commercial in nature.

No, ISO standards are sold only through the official site of International Standards Organization and through the national bodies, which are officially representing ISO in the respective countries. However, there are some checklists available and our policies do contain the references to the corresponding requirements of  ISO27001 standard.

After the payment for the ordered item is done, customer sees the clickable download link which allows to download the purchased document.

At the moment only documentation templates and checklists in English are available.