عنوان

Information technology, security techniques, code of practice for information security management = Technologies de l'information, techniques de sécurité, code de pratique pour la gestion de sécurité d'information.

شابک

0580597296

شابک

9780580597299

شماره

b560339

عنوان اصلي

Information technology, security techniques, code of practice for information security management = Technologies de l'information, techniques de sécurité, code de pratique pour la gestion de sécurité d'information.

نام عام مواد

[Book]

نام نخستين پديدآور

International Organization for Standardization.

وضعيت ويراست

1st ed

محل نشرو پخش و غیره

Geneva

نام ناشر، پخش کننده و غيره

ISO/IEC

تاریخ نشرو بخش و غیره

[2007], 2007, ©2005.

نام خاص و کميت اثر

xi, 115 pages ; 28 cm.

عنوان فروست

International standard, ISO/IEC 27002 (2005)

متن يادداشت

Cover title.;"2005-06-15.";"Reference number ISO/IEC 27002-2005(E).";"This first edition of ISO/IEC 27002 comprises ISO/IEC 17799:2005 and ISO/IEC 17799:2005/Cor.1:2007. Its technical content is identical to that of ISO/IEC 17799:2005. ISO/IEC 17799:2005/Cor.1:2007 changes the reference number of the standard from 17799 to 27002. ISO/IEC 17799:2005 and ISO/IEC 17799:2005/Cor.1:2007 are provisionally retained until publication of the second edition of ISO/IEC 27002"--Foreword p.iii.;Technical corrigendum 1, published 2007-07-01, Ref. no. ISO/IEC 17799:2005/Cor. 1:2007(E)--Corrigendum.

متن يادداشت

Introduction ----;1. Scope ---;2. Terms and definitions ---;3. Structure of this standard ---;4. Risk assessment and treatment ---;5. Security policy ---;6. Organization of information security ---;7. Asset management ---;8. Human resources security ---;9. Physical and environmental security ---;10. Communication and operations management ---;11. Access control ---;12. Information systems acquisition, development and maintenance ---;13. Information security incident management ---;14. Business continuity management ---;15. Compliance.

متن يادداشت

ISO/IEC 27002:2005 comprises ISO/IEC 17799:2005 and ISO/IEC 17799:2005/Cor. 1:2007. Its technical content is identical to that of ISO/IEC 17799:2005. ISO/IEC 17799:2005/Cor. 1:2007 changes the reference number of the standard from 17799 to 27002. ISO/IEC 27002:2005 establishes guidelines and general principles for initiating, implementing, maintaining, and improving information security management in an organization. The objectives outlined provide general guidance on the commonly accepted goals of information security management. ISO/IEC 27002:2005 contains best practices of control objectives and controls in the following areas of information security management: security policy; organization of information security; asset management; human resources security; physical and environmental security; communications and operations management; access control; information systems acquisition, development and maintenance; information security incident management; business continuity management; and compliance. The control objectives and controls in ISO/IEC 27002:2005 are intended to be implemented to meet the requirements identified by a risk assessment. ISO/IEC 27002:2005 is intended as a common basis and practical guideline for developing organizational security standards and effective security management practices, and to help build confidence in inter-organizational activities.

عنوان اصلي به زبان ديگر

Technologies de l'information, techniques de sécurité, code de pratique pour la gestion de sécurité d'information;ISO/IEC 27002

موضوع مستند نشده

Computer security -- Standards.

موضوع مستند نشده

Information technology -- Security measures -- Standards.

شماره رده

نشانه اثر

مستند نام اشخاص تاييد نشده

International Organization for Standardization.

مستند نام اشخاص تاييد نشده

International Electrotechnical Commission.

مستند نام اشخاص تاييد نشده

International Organization for Standardization.

نام الکترونيکي

نوع ماده

[Book]

تكميل شده

Y