M00009438
New product
INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY INCIDENT MANAGEMENT
Canadian Standards Association
In stock
Warning: Last items in stock!
Availability date: 10/28/2021
Foreword <br>Introduction <br>1 Scope<br>2 Normative references <br>3 Terms and definitions<br>4 Overview <br>5 Plan and prepare phase <br>6 Detection and reporting phase <br>7 Assessment and decision phase<br>8 Responses phase<br>9 Lessons learnt phase <br>Annex A (informative) - Cross reference table of <br> ISO/IEC 27001 vs ISO/IEC 27035<br>Annex B (informative) - Examples of information <br> security incidents and their causes <br>Annex C (informative) - Example approaches to <br> the categorization and classification of <br> information security events and incidents <br>Annex D (informative) - Example information <br> security event, incident and vulnerability <br> reports and forms<br>Annex E (informative) - Legal and regulatory <br> aspects<br>Bibliography
Gives a structured and planned approach to: a) detect, report and assess information security incidents; b) respond to and manage information security incidents; c) detect, assess and manage information security vulnerabilities; and d) continuously improve information security and incident management as a result of managing information security incidents and vulnerabilities.
Published | |
Document Type | Standard |
Status | Current |
Publisher | Canadian Standards Association |
ProductNote | Reconfirmed EN |
Pages | |
ISBN |