Recent studies have shown that 68% of Help Desk organizations have no formal set of Information Security Policies and, as a result there is an inadequate basis upon which to build the appropriate safeguards to protect the life blood of the Help Desk – its information systems. This component contains a range of suggested baseline policies and rules to be applied to meet these requirements. The Policies themselves have been drawn from the extensive experience of IT and Security professionals and are based upon the International Standards BS 7799 and ISO/IEC 17799.