Historical

ISO/IEC 27035:2011

Information technology - Security techniques - Information security incident management


ISO/IEC 27035:2011 provides a structured and planned approach to:

  1. detect, report and assess information security incidents;
  2. respond to and manage information security incidents;
  3. detect, assess and manage information security vulnerabilities; and
  4. continuously improve information security and incident management as a result of managing information security incidents and vulnerabilities.

ISO/IEC 27035:2011 provides guidance on information security incident management for large and medium-sized organizations. Smaller organizations can use a basic set of documents, processes and routines described in this International Standard, depending on their size and type of business in relation to the information security risk situation. It also provides guidance for external organizations providing information security incident management services.


CONTENT PROVIDER
International Organization for Standardization [iso]

Others Also Bought
Information technology - Security techniques - Information security risk management
Information technology - Security techniques - Guidelines for information and communication technology readiness ...
Information technology - Security techniques - Network security - Part 3: Reference networking scenarios - Threats, ...
Included in Packages
This standard is not included in any packages.
Document History
Amendments & Corrections
We have no amendments or corrections for this standard.