Hello, you are using an old browser that's unsafe and no longer supported. Please consider updating your browser to a newer version, or downloading a modern browser.

Global Accelerated Learning • Est. 1999
Glossary Term Procedures

Training Camp • Cybersecurity Glossary

What is Procedures?

Procedures are detailed, step-by-step instructions specifying exactly how to perform activities to implement policies and standards consistently.

Glossary > Governance, Risk & Compliance > Procedures

Understanding Procedures

Explicit, repeatable activities to accomplish a specific task. Procedures can address one-time or infrequent actions, or common, regular occurrences. Procedures are detailed, step-by-step instructions that specify exactly how to perform activities to implement policies and standards consistently. They define who performs actions, when, how, and in what sequence to achieve specific outcomes. Procedures are referenced in frameworks like ISO 27001, NIST SP 800-53, ITIL, and various regulatory requirements. Organizations implement procedures through detailed documentation, process flows, checklists, automation where possible, training, and verification of adherence. For example, an incident response procedure might detail specific steps for initial assessment, classification, containment, eradication, recovery, and post-incident analysis, including required documentation, notification timelines, and escalation paths for different incident types. Related terms: Process, Work instruction, Standard operating procedure (SOP), Workflow, Documentation, Checklist, Process mapping, Task sequence.

Learn More About Procedures:

Ready to Get Certified?

Turn knowledge into credentials with our instructor-led cybersecurity boot camps.

View All Courses →