ISO/IEC 27005:2008

Information technology — Security techniques — Information security risk management

Publication date: Jun 4, 2008

95.99 Withdrawal of Standard May 19, 2011

General information

Current stage: 95.99 Effective date: May 19, 2011

Originator: ISO/IEC

Owner: ISO/IEC JTC 1/SC 27

Type: International Standard

ICS: 35.030 03.100.70

Languages: English

Buying

Status: Withdrawn

PDF

Paper

PDF and Paper

Language

Language in which you want to receive the document.

Scope

ISO/IEC 27005:2008 provides guidelines for information security risk management. It supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach. Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is important for a complete understanding of ISO/IEC 27005:2008. ISO/IEC 27005:2008 is applicable to all types of organizations (e.g. commercial enterprises, government agencies, non-profit organizations) which intend to manage risks that could compromise the organization's information security.

Life cycle

PREVIOUSLY

WITHDRAWN
ISO/IEC TR 13335-3:1998

WITHDRAWN
ISO/IEC TR 13335-4:2000

NOW

WITHDRAWN
ISO/IEC 27005:2008
95.99 Withdrawal of Standard
May 19, 2011

REVISED BY

WITHDRAWN
ISO/IEC 27005:2011