ISO/IEC 27005:2008

Description
Information Technology - Security Techniques - Information Security Risk Management - new international standard!

Program

ISO/IEC 27005 -theInformation Security Risk Management Standard
ISO/IEC 27005:2008 provides guidelines for information security risk management. It supports the general concepts specified in ISO/IEC 27001. ISO/IEC 27005:2008 is designed to assist the satisfactory implementation of information security based on a risk management approach.

Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and 27002 is important for a complete understanding of ISO/IEC 27005:2008. ISO/IEC 27001 and ISO/IEC 27002 are also available to purchase from this website.
The advice and guidance provided in ISO/IEC 27005 is applicable no matter the size or type of your organisation. Whether your organisation is in the private, not-for-profit or public sector, or is a small, medium or large organisation, the advice and guidance here on risk management is applicable.


Key features and benefits

• ISO/IEC 27005 provides guidelines for information security risk management.
• The advice and guidance in the standard is applicable no matter the size or type of organisation.
• Uses common concepts as conveyed in ISO/IEC 27001 and ISO/IEC 27002.

We also offer this standard as an electronic download - ISO/IEC 27005 (Download) .

Publisher: British Standards Institute

Format: Hardcopy
Publication date: June 2008
Availability: In Stock

Information security risk management is one of the core competencies of information security. This standard is an essential companion to ISO/IEC 27001 and ISO/IEC 27002; if you have already got these standards then you need this one too. Order today!