UNLIMITED FREE ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

CEN - EN ISO 27002

Information security, cybersecurity and privacy protection - Information security controls

active, Most Current
Organization: CEN
Publication Date: 1 November 2022
Status: active
Page Count: 166
ICS Code (IT Security): 35.030
scope:

This document provides a reference set of generic information security controls including implementation guidance. This document is designed to be used by organizations:

a) within the context of an information security management system (ISMS) based on ISO/IEC 27001;

b) for implementing information security controls based on internationally recognized best practices;

c) for developing organization-specific information security management guidelines.

Document History

EN ISO 27002
November 1, 2022
Information security, cybersecurity and privacy protection - Information security controls
This document provides a reference set of generic information security controls including implementation guidance. This document is designed to be used by organizations: a) within the context of an...
EN ISO/IEC 27002
February 1, 2017
Information technology - Security techniques - Code of practice for information security controls
This International Standard gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of...

References

This document references:
ISO 15489-1 - Information and documentation - Records management - Part 1: Concepts and principles
Published by ISO on April 15, 2016
This part of ISO 15489 defines the concepts and principles from which approaches to the creation, capture and management of records are developed. This part of ISO 15489 describes concepts and...
This document references:
ISO 55001 - Asset management - Management systems - Requirements
Published by ISO on January 15, 2014
This International Standard specifies requirements for an asset management system within the context of the organization. This International Standard can be applied to all types of assets and by all...
This document references:
ISO 9000 - Quality management systems — Fundamentals and vocabulary
Published by ISO on September 15, 2015
This International Standard describes the fundamental concepts and principles of quality management which are universally applicable to the following: — organizations seeking sustained success...
This document references:
ISO/IEC 11770-7 - Information security — Key management — Part 7: Cross-domain password-based authenticated key exchange
Published by ISO on July 1, 2021
This document specifies mechanisms for cross-domain password-based authenticated key exchange, all of which are four-party password-based authenticated key exchange (4PAKE) protocols. Such protocols...
This document references:
ISO/IEC 15408-5 - Information security, cybersecurity and privacy protection — Evaluation criteria for IT security — Part 5: Pre-defined packages of security requirements
Published by ISO on August 1, 2022
This document provides packages of security assurance and security functional requirements that have been identified as useful in support of common usage by stakeholders. EXAMPLE Examples of provided...
This document is referenced by:
BS PD CEN/TS 17241 - Intelligent transport systems - Traffic management systems - Status, fault and quality requirements
Published by BSI on April 30, 2019
A description is not available for this item.
This document is referenced by:
BS EN IEC 61031 - Nuclear facilities - Instrumentation and control systems - Design, location and application criteria for installed area gamma radiation dose rate monitoring equipment for use during normal operation and anticipated operational occurrences
Published by BSI on August 31, 2020
A description is not available for this item.
This document is referenced by:
BS EN 12583 - Gas Infrastructure - Compressor stations - Functional requirements
Published by BSI on June 30, 2022
A description is not available for this item.
This document is referenced by:
BS EN ISO/IEC 27701 - Security techniques - Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management - Requirements and guidelines
Published by BSI on August 31, 2019
A description is not available for this item.
This document is referenced by:
BS IEC 63046 - Nuclear power plants — Electrical power system — General requirements
Published by BSI on October 31, 2020
A description is not available for this item.
View Less
View All
Advertisement