Historical
INCITS/ISO/IEC 27005:2018 (2019)
Information technology -- Security techniques -- Information security risk management
Provides guidelines for information security risk management. This document supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach. Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is important for a complete understanding of this document.
Content Provider
InterNational Committee for Information Technology Standards [incits]