Information Security Management System, Federal Information Processing Standard
Beschreibung Die ISO 20000 dient als Messbarer Qualitätsstandart für das IT-Service Management(ITSM). Es werden notwendige Mindestanforderungen an Prozesse definiert, welche eine Organisation etablieren muss um qualitative IT-Services bereitstellen und managen…
Beschreibung FIPS 200 specifies minimum security requirements for federal information and information systems and a risk-based process for selecting the security controls necessary to satisfy the minimum requirements.NIST Weiterführende Links…
Beschreibung This document specifies requirements for a security management system, including aspects relevant to the supply chain.ISO.org Weiterführende Links Das Dokument kann hier erworben werden. Schlagwörter Security and resilience —…
Beschreibung This document focuses exclusively on the integrated implementation of an information security management system (ISMS) as specified in ISO/IEC 27001 and a service management system (SMS) as specified in ISO/IEC 20000-1.ISO.org…
Beschreibung The scope of this Recommendation | ISO/IEC 27011:2016 is to define guidelines supporting the implementation of information security controls in telecommunications organizations.ISO.org Weiterführende Links Das Dokument kann hier erworben…
Beschreibung This International Standard provides controls and guidance specifically relating to initiating, implementing, maintaining, and improving information security in inter-organizational and inter-sector communications. It provides guidelines and general principles on…
Beschreibung This document provides guidance on reviewing and assessing the implementation and operation of information security controls, including the technical assessment of information system controls, in compliance with an organization's…
Beschreibung This document provides guidance on managing an information security management system (ISMS) audit programme, on conducting audits, and on the competence of ISMS auditors, in addition to the guidance…
Beschreibung ISO/IEC 27006:2015 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021‑1…
Beschreibung ISO/IEC 27004:2016 provides guidelines intended to assist organizations in evaluating the information security performance and the effectiveness of an information security management system in order to fulfil the requirements…