As a formal specification, it mandates requirements that define how to implement, monitor, maintain, and continually improve the ISMS. ISO/IEC 27001 is a security standard that formally specifies an Information Security Management System (ISMS) that is intended to bring information security under explicit management control. These global standards provide a framework for policies and procedures that include all legal, physical, and technical controls involved in an organization's information risk management processes. Published under the joint ISO/IEC subcommittee, the ISO/IEC 27000 family of standards outlines hundreds of controls and control mechanisms to help organizations of all types and sizes keep information assets secure. The International Electrotechnical Commission (IEC) is the world's leading organization for the preparation and publication of international standards for electrical, electronic, and related technologies. The International Organization for Standardization (ISO) is an independent nongovernmental organization and the world's largest developer of voluntary international standards.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |