Guest user Created: Aug 22, 2017 Last commented: Aug 22, 2017

ISO 27799 and ISO 27001

These days I'm interested in ISO 27799:2016 standard. Could you please help me to understand the differences and similarities between ISO 27799 and ISO 27001. If possible please provide me some resource links and white papers.

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Aug 22, 2017

Answer: ISO 27799 (Health informatics -- Information security management in health using ISO/IEC 27002) defines guidelines to support the interpretation and implementation of ISO/IEC 27002 in health informatics, being also a complement for ISO 27001.

While ISO 27001 provides requirements for an Information Security Management System, and ISO 27002 provides guidelines for the controls stated on ISO 27001 Annex A, ISO 27799 provides details, where necessary, to enhance security considering a healthcare environment.

Some examples of areas covered by ISO 27799 are:
- anonymization and pseudonymization of personal health information;
- network quality of service; and
- data quality

This article will provide you further explanation about ISO 27799 and ISO 27001:
- How ISO 27001 and ISO 27799 complement each other in healt h organizations https://advisera.com/27001academy/blog/2016/06/13/how-iso-27001-and-iso-27799-complement-each-other-in-health-organizations/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Aug 22, 2017

Expert Advice Community