ISO/IEC 27005:2011

Information technology — Security techniques — Information security risk management

Датум објављивања: 19. 5. 2011.

95.99 Повучен 9. 7. 2018.

Опште информације

Тренутна фаза: 95.99 Effective date: 9. 7. 2018.

Иницијатор: ISO/IEC

Припада: ISO/IEC JTC 1/SC 27

Врста: Међународни стандард

ICS: 35.030 03.100.70

Језик: енглески

Куповина

Статус: Повучен

PDF

Папир

PDF и папир

Језик

Језик на коме желите да примите документ.

Апстракт

ISO/IEC 27005:2011 provides guidelines for information security risk management.
It supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach.
Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is important for a complete understanding of ISO/IEC 27005:2011.
ISO/IEC 27005:2011 is applicable to all types of organizations (e.g. commercial enterprises, government agencies, non-profit organizations) which intend to manage risks that could compromise the organization's information security.