Тезис
ISO/IEC 27005:2008 provides guidelines for information security risk management. It supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach. Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is important for a complete understanding of ISO/IEC 27005:2008. ISO/IEC 27005:2008 is applicable to all types of organizations (e.g. commercial enterprises, government agencies, non-profit organizations) which intend to manage risks that could compromise the organization's information security.
Общая информация
-
Текущий статус : WithdrawnДата публикации : 2008-06
-
Версия : 1
-
Технический комитет:Information security, cybersecurity and privacy protection
-
- ICS :
-
IT Security
-
Management systems
Жизненный цикл
-
Ранее
WithdrawnISO/IEC TR 13335-3:1998
WithdrawnISO/IEC TR 13335-4:2000
-
Сейчас
-
Пересмотрен
WithdrawnISO/IEC 27005:2011
Появились вопросы?
Ознакомьтесь с FAQ
Часы работы:
Понедельник – пятница: 09:00-12:00, 14:00-17:00 (UTC+1)
Будьте в курсе актуальных новостей ИСО
Подписывайтесь на наши новости, обзоры, а также на информацию о продуктах.