LIVE VIRTUAL TRAININGS
Learn in small groups from top experts and real-life examples

Expert Advice Community

Guest

Relevant ISO standards for information security

  Quote
Guest
Guest user Created:   May 05, 2018 Last commented:   May 05, 2018

Relevant ISO standards for information security

Is it fine to say that the first five ISO/IEC 27000 family of standard are the most critical standards for the information security posture of any organisation
0 0

Assign topic to the user

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal May 05, 2018

Answer: You can consider the following standards of the ISO 27001 family as the basis for the generic approach to information security:
ISO/IEC 27001 — Information technology - Security Techniques — Information security management systems — Requirements.
ISO/IEC 27002 — Code of practice for information security controls
ISO/IEC 27004 — Information security management — Monitoring, measurement, analysis and evaluation
ISO/IEC 27005 — Information security risk management

However, ISO 27000 family also have additional standards that specific industries should also consider critical to properly protect information, such as:
ISO/IEC 27017 — Code of practice for information security controls based on ISO/IEC 27002 for cloud services
ISO/IEC 27018 — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
ISO/IEC TR 27019 — Infor mation security for process control in the energy industry
ISO/IEC 27031 — Guidelines for information and communication technology readiness for business continuity
ISO/IEC 27032 — Guideline for cybersecurity

So, a more appropriated statement would be "The ISOs 27001, 27002, 27004 and 27005 can provide the basic foundation for the information security posture of any organisation."
Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

May 05, 2018

May 05, 2018

Suggested Topics

Guest user Created:   Jan 04, 2022 ISO 27001 & 22301
Replies: 1
0 0

ISO 27005:2018

Guest user Created:   May 14, 2021 ISO 27001 & 22301
Replies: 1
0 0

CISO and document management