become an editor
the entire directory
only in Policy/Standards
Open Directory - Computers: Security: Policy: Standards
Business: International Business and Trade: International Organization for Standardization - ISO
- Provides the Common Criteria for Information Technology Security Evaluation. Also published as ISO/IEC 15408-1.
ISO 27000 Toolkit
- Commercial package containing the ISO/IEC 27001 and 27002 standards plus supporting materials such as policies and a glossary.
ISO 27001 Certificates
- Comprehensive listing of organizations certified against ISO/IEC 27001 or equivalent national standards, based on submissions from the certification bodies.
ISO 27001 Security
- Up to date information and news about the ISO/IEC 27000-series information security standards, with discussion forum, FAQ and links to other security standards.
- Introduces the ISO/IEC 27000 series of standards and provides a common glossary of information security terms used in the standards. Free download. [ZIP file containing PDF]
ISO/IEC 27001 Frequently Asked Questions
- Short FAQ covers the basics of ISO/IEC 27001, the management system standard.
ISO27k Implementers' Forum
- Google Groups discussion forum for those actively implementing the ISO/IEC 27000-series standards.
IT Governance Limited
- Information, books, tools and training for developing and implementing an information security management system in line with the international best-practice specification ISO/IEC 27001.
Information Governance Limited
- Supplier of Proteus Enterprise security risk management software for compliance with ISO/IEC 27002 and related information security, risk management and IT governance standards.
Information Security & Business Continuity Academy
- Training and consultancy support services for those implementing ISO/IEC 27001 and BS 25999-2
Jake Smith Consulting
- Consultant specialising in helping organisations achieve ISO/IEC 27001 compliance and certification.
NERC Reliability Standards
- Information on the development of cyber and information security standards with emphasis on reliability.
NIST Special Publication 800-53
- Recommended Security Controls for Federal Information Systems has a similar scope to ISO/IEC 27002 and cross-references the standard. [PDF]
- An information security and integrated systems management consultancy specializing in ISO/IEC 27001 certification, audits, assessments and training.
Overview of Information Security Standards
- Report by the Government of the Hong Kong Special Administrative Region outlines the ISO/IEC 27000-series standards plus related standards, regulations etc. including PCI-DSS, COBIT, ITIL/ISO 20000, FISMA, SOX and HIPAA. [PDF]
Praxiom Research Group
- Plain English descriptions of ISO/IEC 27001, 27002 and other standards, including a list of the controls.
- Software and services for assessing and managing information security risks in the context of an ISO/IEC 27001 management system.
- Questionnaire and review process used to assess business partners' information security status using ISO/IEC 27002, COBIT, PCI-DSS and others.
The ISO 27000 Directory
- Information covering the ISO/IEC 27000 series of standards, including updates and consultants directory
The Security Practitioner
- The ISO 27001 Perspective: An Introduction to Information Security is a guide to ISO/IEC 27001 and 27002 in the form of an HTML help file.
Wikipedia: ISO/IEC 27000-series
- Open encyclopedia entry for the ISO/IEC 27000 family of information security management system standards, with links to pages on several standards in the family.
Yahoo! Groups iso-27001
- Discussion forum for ISO/IEC 27001 and 27002
" search on:
Copyright © 2013 Netscape
Visit our sister sites
Last update: Sunday, March 3, 2013 5:59:13 PM EST -