- Establishes requirements for an organization´s Information Security Management System (ISMS)
- Determines documentation requirements and management responsibility
- Requires internal audits and managerial review of the ISMS
- Demands ISMS improvement
- Provides controls and control objectives derived from best practices in ISO/IEC 27002
Wednesday, February 11, 2009
International Organization for Standardization / International Electrotechnical Commission 27001
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment