the entire directory only in Policy/Standards

---

See also:

• Business: International Business and Trade: International Organization for Standardization - ISO (33)

• Common Criteria - Provides the Common Criteria for Information Technology Security Evaluation. Also published as ISO/IEC 15408-1.
• ISO 27000 Toolkit - Commercial package containing the ISO/IEC 27001 and 27002 standards plus supporting materials such as policies and a glossary.
• ISO 27001 Certificates - Comprehensive listing of organizations certified against ISO/IEC 27001 or equivalent national standards, based on submissions from the certification bodies.
• ISO 27001 Security - Up to date information and news about the ISO/IEC 27000-series information security standards, with discussion forum, FAQ and links to other security standards.
• ISO/IEC 27000 - Introduces the ISO/IEC 27000 series of standards and provides a common glossary of information security terms used in the standards. Free download. [ZIP file containing PDF]
• ISO/IEC 27001 Frequently Asked Questions - Short FAQ covers the basics of ISO/IEC 27001, the management system standard.
• ISO27k Implementers' Forum - Google Groups discussion forum for those actively implementing the ISO/IEC 27000-series standards.
• IT Governance Limited - Information, books, tools and training for developing and implementing an information security management system in line with the international best-practice specification ISO/IEC 27001.
• Information Governance Limited - Supplier of Proteus Enterprise security risk management software for compliance with ISO/IEC 27002 and related information security, risk management and IT governance standards.
• Information Security & Business Continuity Academy - Training and consultancy support services for those implementing ISO/IEC 27001 and BS 25999-2
• Jake Smith Consulting - Consultant specialising in helping organisations achieve ISO/IEC 27001 compliance and certification.
• NERC Reliability Standards - Information on the development of cyber and information security standards with emphasis on reliability.
• NIST Special Publication 800-53 - Recommended Security Controls for Federal Information Systems has a similar scope to ISO/IEC 27002 and cross-references the standard. [PDF]
• Orange Parachute - An information security and integrated systems management consultancy specializing in ISO/IEC 27001 certification, audits, assessments and training.
• Overview of Information Security Standards - Report by the Government of the Hong Kong Special Administrative Region outlines the ISO/IEC 27000-series standards plus related standards, regulations etc. including PCI-DSS, COBIT, ITIL/ISO 20000, FISMA, SOX and HIPAA. [PDF]
• Praxiom Research Group - Plain English descriptions of ISO/IEC 27001, 27002 and other standards, including a list of the controls.
• Sagenti Inc - Software and services for assessing and managing information security risks in the context of an ISO/IEC 27001 management system.
• Shared Assessments - Questionnaire and review process used to assess business partners' information security status using ISO/IEC 27002, COBIT, PCI-DSS and others.
• The ISO 27000 Directory - Information covering the ISO/IEC 27000 series of standards, including updates and consultants directory
• The Security Practitioner - The ISO 27001 Perspective: An Introduction to Information Security is a guide to ISO/IEC 27001 and 27002 in the form of an HTML help file.
• Wikipedia: ISO/IEC 27000-series - Open encyclopedia entry for the ISO/IEC 27000 family of information security management system standards, with links to pages on several standards in the family.
• Yahoo! Groups iso-27001 - Discussion forum for ISO/IEC 27001 and 27002

"Standards" search on:   AOL - Ask - Bing - Gigablast - Google - Lycos - Yahoo - Yippy

Category editor: garyhins

Copyright © 2013 Netscape Terms of Use