PD ISO/IEC TS 27008:2019 Information technology. Security techniques. Guidelines for the assessment of information security controls

PD ISO/IEC TS 27008:2019

Information technology. Security techniques. Guidelines for the assessment of information security controls

Status : Current   Published : January 2019

Format
PDF

Format
HARDCOPY



What is this standard about?

This document provides guidance on reviewing and assessing the implementation and operation of information security controls, including the technical assessment of information system controls, in compliance with an organization's established information security requirements including technical compliance against assessment criteria based on the information security requirements established by the organization.

This document offers guidance on how to review and assess information security controls being managed through an Information Security Management System specified by ISO/IEC 27001.

It is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations conducting information security reviews and technical compliance checks.




Standard NumberPD ISO/IEC TS 27008:2019
TitleInformation technology. Security techniques. Guidelines for the assessment of information security controls
StatusCurrent
Publication Date24 January 2019
Normative References(Required to achieve compliance to this standard)ISO/IEC 27000, ISO/IEC 27017:2015
Informative References(Provided for Information)ISO/IEC 27007, ISO/IEC 27006, ISO/IEC 27002, ISO Guide 73, ISO/IEC 27017, NIST 800-53A, ISO/IEC 27005, ISO/IEC 27001, ISO 19011:2018
ReplacesPD ISO/IEC TR 27008:2011
International RelationshipsISO/IEC TS 27008:2019
DescriptorsInspection, Data processing, Management, Data security, Quality auditing, Computer hardware, Conformity, Computers, Computer networks, Anti-burglar measures, Data storage protection, Performance testing, Computer software, Information exchange
ICS03.100.70
35.030
Title in FrenchTechnologies de l'information. Techniques de sécurité. Lignes directrices pour les auditeurs des contrôles de sécurité de l'information
CommitteeIST/33/1
ISBN978 0 580 94767 4
PublisherBSI
FormatA4
DeliveryYes
Pages108
File Size3.648 MB
Price£292.00


 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents


BSOL

The faster, easier way to work with standards


Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version


Collaborate, Innovate, Accelerate.


Customers who bought this product also bought

  • BS ISO/IEC 27003:2017
    Information technology. Security techniques. Information security management systems. Guidance
  • BS ISO/IEC 27004:2016
    Information technology. Security techniques. Information security management. Monitoring, measurement, analysis and evaluation
  • BS EN ISO/IEC 27002:2017
    Information technology. Security techniques. Code of practice for information security controls
  • ISO/IEC 27005:2018
    Information technology. Security techniques. Information security risk management