UNLIMITED FREE
ACCESS
TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

- Trained on our vast library of engineering resources.

ISO/IEC TS 27008

Information technology - Security techniques - Guidelines for the assessment of information security controls

active, Most Current
Buy Now
Organization: ISO
Publication Date: 1 January 2019
Status: active
Page Count: 98
ICS Code (Management systems): 03.100.70
ICS Code (IT Security): 35.030
scope:

This document provides guidance on reviewing and assessing the implementation and operation of information security controls, including the technical assessment of information system controls, in compliance with an organization's established information security requirements including technical compliance against assessment criteria based on the information security requirements established by the organization.

This document offers guidance on how to review and assess information security controls being managed through an Information Security Management System specified by ISO/IEC 27001.

It is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations conducting information security reviews and technical compliance checks.

Document History

ISO/IEC TS 27008
January 1, 2019
Information technology - Security techniques - Guidelines for the assessment of information security controls
This document provides guidance on reviewing and assessing the implementation and operation of information security controls, including the technical assessment of information system controls, in...

References

Advertisement