Historical

ISO/IEC 27005:2008

Information technology - Security techniques - Information security risk management


ISO/IEC 27005:2008 provides guidelines for information security risk management. It supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach. Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is important for a complete understanding of ISO/IEC 27005:2008. ISO/IEC 27005:2008 is applicable to all types of organizations (e.g. commercial enterprises, government agencies, non-profit organizations) which intend to manage risks that could compromise the organization's information security.


CONTENT PROVIDER
International Organization for Standardization [iso]

Others Also Bought
Information technology - Security techniques - Requirements for bodies providing audit and certification of information ...
ISO/IEC 27001 and ISO/IEC 27002 - IT Security Techniques Package (Save 16% Off List Prices)
Information technology - Security techniques - Information security management - Measurement
Included in Packages
This standard is not included in any packages.
Amendments & Corrections
We have no amendments or corrections for this standard.