BS ISO/IEC 27013:2012 Information technology. Security techniques. Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1

BS ISO/IEC 27013:2012

Information technology. Security techniques. Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1

Status : Revised, Superseded, Withdrawn   Published : October 2012 Replaced By : BS ISO/IEC 27013:2015

WITHDRAWN TITLE
*To ask about withdrawn titles contact the
BSI Customer Services
cservices@bsigroup.com, +44 345 086 9001


The relationship between information security and service management is so closely intertwined that many organizations already recognize the benefits of adopting ISO/IEC 27001 for information security and ISO/IEC 20000-1 for service management.

It is common for an organization to improve the way it operates to conform to the requirements of one International Standard and then make further improvements to conform to the requirements of the other.

That’s why we’ve published ISO/IEC 27013:2012 which provides organizations advice on how to make integrated use of information security and service management system standards. A number of advantages can be gained by implementing an integrated management system which takes into account not only the services provided, but also the protection of information assets.

These benefits can be experienced whether one standard is implemented before the other, or both standards are implemented simultaneously. Management and organizational processes, in particular, can derive benefit from the similarities between the International Standards and their common objectives.

An integrated implementation allows users to:

  • Gain credibility for an effective and secure service to both internal and external customers
  • Lower costs of an integrated programme
  • Reduce implementation time due to the integrated development of processes common to both standards
  • Eliminate necessary duplication
  • Promote understanding between service management and security personnel
  • Improve the certification process.

Users of this International Standard include auditors, organizations implementing information security and/or service management systems, and organizations involved in auditor certification or training, certification/registration of management systems, and accreditation or standardization in the area of conformity assessment.

Contents Page

Foreword
Introduction
1 Scope
2 Normative references
3 Terms, abbreviated terms and definitions
4 Overviews of ISO/IEC 27001 and ISO/IEC 20000-1
5 Approaches for integrated implementation
6 Integrated implementation considerations
Annex A
Annex B
Bibliography
Figures




Standard NumberBS ISO/IEC 27013:2012
TitleInformation technology. Security techniques. Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1
StatusRevised, Superseded, Withdrawn
Publication Date31 October 2012
Withdrawn Date31 December 2015
Normative References(Required to achieve compliance to this standard)ISO/IEC 20000-1:2011, ISO/IEC 27000:2009, ISO/IEC 27001:2005
Informative References(Provided for Information)ISO 9000, ISO 9004, ISO/IEC TS 15504-8, ISO 19011, ISO/IEC 20000-2, ISO/IEC 20000-3, ISO/IEC 20000-1, ISO/IEC TR 20000-4, ISO/IEC TR 20000-5, ISO/IEC TR 90006, ISO/IEC 20000-1:2011, ISO/IEC 27002, ISO/IEC 27003, ISO/IEC 27004, ISO/IEC 27005, ISO/IEC 27006, ISO/IEC 27007, ISO/IEC TR 27008, ISO/IEC 27010, ISO/IEC 27014, ISO 31000
Replaced ByBS ISO/IEC 27013:2015
International RelationshipsISO/IEC 27013:2012
Draft Superseded By11/30207802 DC
DescriptorsData processing, Computers, Management, Data security, Data storage protection, Anti-burglar measures, Computer technology, Computer networks, Information exchange, Vocabulary
ICS03.080.99
35.020
35.030
Title in FrenchTechnologies de l'information. Techniques de sécurité. Guide sur la mise en oeuvre intégrée d'ISO/CEI 27001 et ISO/CEI 20000-1
CommitteeIST/33/1
ISBN978 0 580 68704 4
PublisherBSI
FormatA4
DeliveryNo
Pages50
File Size1.322 MB
Price£200.00


WITHDRAWN TITLE
*To ask about withdrawn titles contact the
BSI Customer Services
cservices@bsigroup.com, +44 345 086 9001
 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents


BSOL

The faster, easier way to work with standards


Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version


Collaborate, Innovate, Accelerate.


Customers who bought this product also bought

  • BS ISO/IEC 27014:2013
    Information technology. Security techniques. Governance of information security
  • BS ISO/IEC 27005:2011
    Information technology. Security techniques. Information security risk management
  • BS ISO/IEC 27032:2012
    Information technology. Security techniques. Guidelines for cybersecurity
  • BS ISO/IEC 27031:2011
    Information technology. Security techniques. Guidelines for information and communication technology readiness for business continuity