Bitte wählen Sie ihr Lieferland und ihre Kundengruppe
ISO 27001 is the world's first formal, internationally recognised specification for an information security management system. In ISO 27001 information security is defined as the preservation of confidentiality, integrity and availability of information. In addition, other properties such as authenticity, accountability, non-repudiation and reliability can also be involved. ISO 27001 systematically describes how to ensure the availability, confidentiality and integrity of information within an organisation. It recognises that threats to information arise and must therefore be addressed. Theses are obviously risks that need identifying and the sensible management approach is to introduce a degree of control. ISO 27001 is largely based on the evolved British standard BS 7799 using the plan, do, check, act (PDCA) model. ISO 27001 defines PDCA as a means of introducing and implementing an information security management system (ISMS). In effect, ISO 27001 mandates the use of ISO 17799 while providing the management system that enables ISO 17799 controls to be part of an integrated framework. While ISO 27001 provides a specification for a coherent, integrated ISMS it is not a panacea. It is a key principle of ISO 27001 that the only controls implemented should be those that help the business protect itself cost-effectively without undermining the business objectives.
Die Inhaltsverzeichnisse werden automatisch erzeugt und basieren auf den im Index des TIB-Portals verfügbaren Einzelnachweisen der enthaltenen Beiträge. Die Anzeige der Inhaltsverzeichnisse kann daher unvollständig oder lückenhaft sein.