SAFETAG audits serve small scale civil society organizations and independent media houses who have digital security concerns by working with them to identify the risks they face and providing capacity-aware, pragmatic next steps to address them.
Traditional security audits are based upon the assumption that an organization has the time, money, and capacity to aim for perfect security. Low-income at-risk groups have none of these luxuries. SAFETAG combines of assessment activities from the the security auditing world with best-practices for working with small scale at-risk organizations.
SAFETAG auditors lead a risk modeling process that helps staff and leadership take an institutional lens on their digital security problems, expose vulnerabilities that impact their critical processes and assets, and provide clear reporting and follow up to help the organization strategically move forward and identify the support that they need.
You can explore the framework online and download the overview and the full guide of the SAFETAG audit here:
To train new auditors, Internews has also provided a curricula:
SAFETAG resources are available under a Creative Commons Attribution-ShareAlike (CC BY-SA 3.0) License
For photo and design details, check out Credits
Please see the full license for content attribution and a usage guide to referring to the "SAFETAG" wordmark.
We have a global network of auditors trained in the SAFETAG framework available for independent work with small NGOs.
For updates or suggestions for the framework:
submit an issue