Policy Map
Visual map of how Dispel's security policies relate to each other. Click any policy to navigate to it. Arrows indicate dependencies and references.
Governance
Access Control
Data Management
Business Continuity
Security Operations
Infrastructure Security
Risk & Compliance
System Lifecycle
Corporate
graph TB
%% Governance
ISP["Information Security
Policy"]:::governance
ISMP["ISMS Plan"]:::governance
AUP["Acceptable Use
Policy"]:::governance
COC["Code of Conduct"]:::governance
RDP["Responsible
Disclosure"]:::governance
WAR["Whistleblower &
Anti-Retaliation"]:::governance
SAT["Security Awareness
& Training"]:::governance
%% Access Control
SAC["System Access
Control"]:::access
IAP["Identification &
Authentication"]:::access
PWD["Password Policy"]:::access
%% Data Management
DCP["Data Classification"]:::data
DPP["Data Protection"]:::data
DRP_data["Data Retention"]:::data
ENC["Encryption Policy"]:::data
BKP["Backup Policy"]:::data
%% Business Continuity
BCP["Business
Continuity Plan"]:::continuity
DRP["Disaster
Recovery Plan"]:::continuity
ISCP["Information System
Contingency Plan"]:::continuity
CPP["Contingency Planning
Policy"]:::continuity
%% Security Operations
IRP["Incident Response"]:::secops
AUD["Audit &
Accountability"]:::secops
LOG["Logging &
Monitoring"]:::secops
SII["System & Info
Integrity"]:::secops
VMP["Vulnerability
Management"]:::secops
%% Infrastructure Security
FWP["Global Network
Firewall"]:::infra
PSP["Physical Security"]:::infra
SCP["System & Comms
Protection"]:::infra
SMP["System Media
Protection"]:::infra
%% Risk & Compliance
RAP["Risk Assessment"]:::risk
VMG["Vendor Management"]:::risk
SCR["Supply Chain
Risk Management"]:::risk
SAM["Security Assessment
& Authorization"]:::risk
%% System Lifecycle
CMP["Change Management"]:::lifecycle
CMGP["Configuration
Management Plan"]:::lifecycle
SCMP["System Config
Management"]:::lifecycle
SDLP["SDLC Policy"]:::lifecycle
SDLPL["SDLC Plan"]:::lifecycle
SMAP["System Maintenance"]:::lifecycle
SPP["System Planning"]:::lifecycle
SSAP["System & Services
Acquisition"]:::lifecycle
%% Corporate
EH["Employee
Handbook"]:::corporate
OAU["Office Access
& Usage"]:::corporate
EXP["Expense
Management"]:::corporate
%% === Relationships ===
%% ISP is the root policy
ISP --> AUP
ISP --> COC
ISP --> SAT
ISP --> SAC
ISP --> DCP
ISP --> DPP
ISP --> ENC
ISP --> BCP
ISP --> IRP
ISP --> PSP
ISP --> RDP
ISP --> RAP
ISP --> VMG
ISP --> VMP
ISP --> BKP
ISP --> SDLP
%% ISMS governs the program
ISMP --> ISP
ISMP --> RAP
ISMP --> SAM
%% Access control hierarchy
SAC --> IAP
IAP --> PWD
%% Business continuity chain
BCP --> DRP
BCP --> ISCP
CPP --> BCP
ISCP --> IRP
%% Data management relationships
DCP --> DPP
DCP --> DRP_data
DPP --> ENC
BKP --> DRP_data
%% Security operations chain
AUD --> LOG
SII --> VMP
IRP --> LOG
%% Infrastructure relationships
SCP --> FWP
SCP --> ENC
%% Risk & compliance
RAP --> SAM
SCR --> VMG
%% System lifecycle
SDLP --> SDLPL
CMP --> SCMP
CMP --> CMGP
SSAP --> SCR
%% Corporate (Employee Handbook is the umbrella for HR/operations policies)
EH --> OAU
EH --> EXP
%% Click handlers — navigate to policy pages
click ISP "/policies/governance/informationsecuritypolicy/"
click ISMP "/policies/governance/informationsecuritymanagementsystemplan/"
click AUP "/policies/governance/acceptableusepolicy/"
click COC "/policies/governance/codeofconduct/"
click RDP "/policies/governance/responsibledisclosurepolicy/"
click WAR "/policies/governance/whistleblowerandanti-retaliationpolicy/"
click SAT "/policies/governance/informationsecuritypolicyandprocedures/"
click SAC "/policies/access-control/systemaccesscontrolpolicyandprocedures/"
click IAP "/policies/access-control/identificationandauthenticationpolicyandprocedures/"
click PWD "/policies/access-control/passwordpolicy/"
click DCP "/policies/data-management/dataclassificationpolicy/"
click DPP "/policies/data-management/dataprotectionpolicy/"
click DRP_data "/policies/data-management/dataretentionpolicy/"
click ENC "/policies/data-management/encryptionpolicy/"
click BKP "/policies/data-management/back_up_policy/"
click BCP "/policies/business-continuity/businesscontinuityplan/"
click DRP "/policies/business-continuity/disasterrecoveryplan/"
click ISCP "/policies/business-continuity/informationsystemcontingencyplan/"
click CPP "/policies/business-continuity/contingencyplanningpolicyandprocedures/"
click IRP "/policies/security-operations/incidentresponsepolicy/"
click AUD "/policies/security-operations/auditandaccountabilitypolicyandprocedures/"
click LOG "/policies/security-operations/loggingandmonitoringpolicy/"
click SII "/policies/security-operations/systeminformationintegritypolicyandprocedures/"
click VMP "/policies/security-operations/vulnerabilitymanagementpolicy/"
click FWP "/policies/infrastructure-security/globalnetworkfirewallpolicy/"
click PSP "/policies/infrastructure-security/physicalsecuritypolicyandprocedures/"
click SCP "/policies/infrastructure-security/systemandcommunicationprotection/"
click SMP "/policies/infrastructure-security/systemmediaprotectionpolicyandprocedures/"
click RAP "/policies/risk-and-compliance/riskassessmentpolicyandprocedures/"
click VMG "/policies/risk-and-compliance/vendormanagementpolicy/"
click SCR "/policies/risk-and-compliance/systemsupplychainriskmanagementpolicyandprocedures/"
click SAM "/policies/risk-and-compliance/informationsecurityassessmentauthorizationandmonitoringpolicyandprocedures/"
click CMP "/policies/system-lifecycle/changemanagementpolicy/"
click CMGP "/policies/system-lifecycle/configurationmanagementplan/"
click SCMP "/policies/system-lifecycle/systemconfigurationmanagementpolicyandprocedures/"
click SDLP "/policies/system-lifecycle/system_development_lifecycle_policy/"
click SDLPL "/policies/system-lifecycle/system_development_lifecycle_plan/"
click SMAP "/policies/system-lifecycle/systemmaintenancepolicyandprocedures/"
click SPP "/policies/system-lifecycle/systemplanningpolicyandprocedures/"
click SSAP "/policies/system-lifecycle/systemandservicesacquisitionpolicyandprocedures/"
click EH "/policies/corporate/employeehandbook/"
click OAU "/policies/corporate/officeaccessandusagepolicy/"
click EXP "/policies/corporate/expensemanagementpolicyandprocedures/"
%% Styles
classDef governance fill:#6d5acd,stroke:#5645a8,color:#fff
classDef access fill:#3182ce,stroke:#2b6cb0,color:#fff
classDef data fill:#38a169,stroke:#2f855a,color:#fff
classDef continuity fill:#d69e2e,stroke:#b7791f,color:#fff
classDef secops fill:#e53e3e,stroke:#c53030,color:#fff
classDef infra fill:#ed8936,stroke:#dd6b20,color:#fff
classDef risk fill:#805ad5,stroke:#6b46c1,color:#fff
classDef lifecycle fill:#319795,stroke:#2c7a7b,color:#fff
classDef corporate fill:#d53f8c,stroke:#b83280,color:#fff
Scroll to zoom. Drag to pan. Click a policy to open it.