How do we maintain our Information Security policies and procedures?

Obsidian editor! We use the editor to maintain our policies and procedures in Markdown.

How do we version control our policies and procedures?

GitHub! We use the Obsidian community Git plugin to maintain version control and branch, and we use Pull Requests for approvals, democratizing our document management process.

Where do we publish our policies and procedures?

Confluence! We use the Obsidian community Confluence plugin to publish the main branch documents.

Why do we use Obsidian + Git + Confluence?

By maintaining our governance documentation as code, we can easily evidence the Git history to ensure maintenance and approvals, which helps us demonstrate program effectiveness.

Compliance doesn't have to be boring; it can borrow engineering methodologies for efficiency. Best of all, at a minimal cost.👍