Guidelines to setting up an information sharing community such as an ISAC or ISAO


In this guideline, we will refer to individuals or organisations that intend to set up a sharing community as “you” or the “operator”.

Relevant research has already been conducted and published by organisations such as the European Union Agency for Network and Information Security (ENISA) and the ISAO Standards Organisation. Our guideline provides practical best practices to set up an information sharing community based on feedback and experience from existing information sharing communities.

This guideline is focused around the Open Source Threat Intelligence Sharing platform (MISP) used in support on information sharing activities.

Guideline available in PDF format. Version 2019-03-11.