• Getting Started with ISO 27000

The ISO/IEC 27000 series includes information security standards published jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). The ISO 27000 series comprises of a family of information security standards that include the ISO 27001 and the ISO 27002 among others.

Why is the ISO 27000 such an important standard in the world of information security? The ISO 27000 series provides best practice recommendations on information security management, risks and controls within the context of an overall Information Security Management System (ISMS). The ISMS concept integrates continuous feedback and improvement activities summarized by a - Plan-Do-Check-Act (PDCA) ‖ approach.

The ISO 27000 standards are applicable to organizations of all types, across industries, and sizes.

So is your organization required to comply with regulations such as the Payment Card Industry‘s (PCI) Data Security Standard (DSS), or the Health Information Technology for Economic and Clinical Health (HITECH) Act, or the Health Insurance Portability and Accountability Act (HIPAA) or other national (federal) or State requirement? If yes, then note that the ISO 27000 provides an exceptional framework to address security regulatory mandates.

In this executive brief, we focus on the two standards that influence information security initiatives worldwide – the ISO 27001 and ISO 27002. The ISO 27001 International Standard is about requirements related to security techniques for information technology and information security management systems.

The ISO 27001 International Standard was developed to provide a model for establishing, implementing, operating, monitoring, reviewing, maintaining and improving an ISMS.

ISO/IEC 27002 provides best practice recommendations on information security management for use by those who are responsible for initiating, implementing or maintaining an ISMS.

We conclude the brief by introducing the area of cyber security strategy and the need for organizations to articulate the same based on the priorities of the business and the sensitive information it processes May 2009.

Document Details

Number of Pages: 40 Pages
File size: 987 KB
File type: Adobe Acrobat (.pdf)
Delivery Method: Downloadable

This item is downloadable. As soon as your credit card has been processed, you can download the product(s) by going to the 'My Account' page and clicking on 'View the order I have made'. The link will be available for a maximum of four days. If you are not able to download the items please let us know. Thank you.

Language English
Format PDF

Write a review

Note: HTML is not translated!
    Bad           Good

Getting Started with ISO 27000

  • Product Code: GSISO
  • Availability: In Stock
  • $49.00