ISO/IEC 2. 70. 01: 2. Wikipedia, the free encyclopedia.
ISO/IEC 20000-1 Registration Guidance Document. ISO/IEC 20000-1 Information Technology - Service Management – Part 1: Specification. Introduction to the ISO/IEC 20000 Series IT Service Management. 1 International Standard, 2011 Requirements for a service management system 2 International Standard, due soon Guidance on the application of service. 1 [email protected] www.marval-group.com What is ISO/IEC 20000? The First International Standard for IT Service Management ISO/IEC 20000 is a standard for a quality management system which “ ISO/IEC 2. 70. 01: 2. September 2. 01. 3. Organizations which meet the standard may be certified compliant by an independent and accredited certification body on successful completion of a formal compliance audit. Structure of the standard. Scope of the standard. How the document is referenced. Reuse of the terms and definitions in ISO/IEC 2. Organizational context and stakeholders. Information security leadership and high- level support for policy. Planning an information security management system; risk assessment; risk treatment. Supporting an information security management system. Making an information security management system operational. Reviewing the system's performance. Corrective action. Annex A: List of controls and their objectives. This structure mirrors the structure of other new management standards such as ISO 2. Other continuous improvement processes like Six Sigma's DMAIC method can be implemented. A very important but little understood change in the new version of ISO2. Annex A controls to manage the information security risks. The previous version insisted (. Thus almost every risk assessment ever completed under the old version of ISO2. Annex A controls but an increasing number of risk assessments in the new version do not use Annex A as the control set. This enables the risk assessment to be simpler and much more meaningful to the organization and helps considerably with establishing a proper sense of ownership of both the risks and controls. This is the main reason for this change in the new version. There are now 1. 14 controls in 1.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2017
Categories |