ISO/IEC 27002
Information technology - Security techniques - Code of practice for information security management
Organization: | ISO |
Publication Date: | 15 June 2005 |
Status: | inactive |
Page Count: | 136 |
ICS Code (Information coding): | 35.040 |
scope:
This International Standard establishes guidelines and general principles for initiating, implementing, maintaining, and improving information security management in an organization. The objectives outlined in this International Standard provide general guidance on the commonly accepted goals of information security management.
The control objectives and controls of this International
Standard are intended to be implemented to meet the requirements
identified by a risk assessment. This International Standard may
serve as a practical guideline for developing organizational
security standards and effective security management practices and
to help build confidence in inter-organizational