UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO - DIS 22340

Security and resilience — Protective security — Guidelines for an enterprise protective security architecture and framework

pending, Most Current
Organization: ISO
Publication Date: 10 July 2023
Status: pending
Page Count: 35
ICS Code (Protection against crime): 13.310
ICS Code (Company organization and management in general): 03.100.01
scope:

This document gives guidance on the enterprise protective security architecture and the framework of protective security policies, processes and controls necessary to mitigate and manage security risks across the protective security domains, including:

a) security governance;

b) personnel security;

c) information security;

d) cyber security;

e) physical security.

This document is applicable for any organization.

Document History

DIS 22340
July 10, 2023
Security and resilience — Protective security — Guidelines for an enterprise protective security architecture and framework
This document gives guidance on the enterprise protective security architecture and the framework of protective security policies, processes and controls necessary to mitigate and manage security...

References

This document references:
IEC 31010 - Risk management – Risk assessment techniques
Published by IEC on June 1, 2019
This International Standard provides guidance on the selection and application of techniques for assessing risk in a wide range of situations. The techniques are used to assist in making decisions...
This document references:
IEC 62443-2-1 - Industrial communication networks – Network and system security – Part 2-1: Establishing an industrial automation and control system security program
Published by IEC on November 1, 2010
This part of IEC 62443 defines the elements necessary to establish a cyber security management system (CSMS) for industrial automation and control systems (IACS) and provides guidance on how to...
This document references:
IEC 62443-2-4 - Security for industrial automation and control systems – Part 2-4: Security program requirements for IACS service providers
Published by IEC on August 1, 2017
This part of IEC 62443 specifies a comprehensive set of requirements for security capabilities for IACS service providers that they can offer to the asset owner during integration and maintenance...
This document references:
IEC 62443-3-2 - Security for industrial automation and control systems – Part 3-2: Security risk assessment for system design
Published by IEC on June 1, 2020
This part of IEC 62443 establishes requirements for: • defining a system under consideration (SUC) for an industrial automation and control system (IACS); • partitioning the SUC into zones and...
This document references:
IEC 62443-3-3 - Industrial communication networks – Network and system security Part 3-3: System security requirements and security levels
Published by IEC on April 1, 2014
A description is not available for this item.
View Less
View All
Advertisement