标准号:ISO/IEC 27005-2008
实施状态:作废
中文名称:信息技术.安全技术.信息安全风险管理
英文名称:Information technology - Security techniques - Information security risk management
发布日期:2008-06
被替代标准:ISO/IEC 27005-2011
代替标准:ISO/IEC TR 13335-3-1998;ISO/IEC TR 13335-4-2000;ISO/IEC FDIS 27005-2008
采用标准:ANSI/INCITS/ISO/IEC 27005-2009,IDT;BS ISO/IEC 27005-2008,IDT;NF Z74-225-2010,IDT;Z74-225PR,IDT;CAN/CSA-ISO/IEC 27005-09-2009,IDT;PN-ISO/IEC 27005-2010,IDT
起草单位:ISO/IEC JTC 1
标准简介:This International Standard provides guidelines for information security risk management.
This International Standard supports the general concepts specified in ISO/lEO 27001 and is designed to
assist the satisfactory implementation of information security based on a risk management approach.
Knowledge of the concepts, models, processes and terminologies described in ISO/IEC27001 and
ISO/IEC 27002 is important for a complete understanding of this International Standard.
This International Standard is applicable to all types of organizations (e.g. commercial enterprises,
government agencies, non-profit organizations) which intend to manage risks that could compromise the
organization's information security.
文件格式:PDF
文件大小:639.73KB
文件页数:62
(以上信息更新时间为:2019-11-22)
ISO_IEC 27005-2008 信息技术.安全技术.信息安全风险管理.pdf
(639.73 KB)
|
|
