The Information Security Management Community Top Ten is an awareness document that describes a series of key issues that organizations should immediately understand. The importance of corporate Governance, Risk and Compliance (GRC) is driving business decision and corporate strategies in the information age….
http://www.ism-community.org/files/folders/trainingandawarenessrelease/entry999.aspx
[Editor's Note (Valle): I came across this excellent PDF that companies that can use to get a quick overview of how good their current information security program is.
