Information security standards ISO 27002 (formerly BS 7799 Part 1) is the ‘Code of Practice for Information Security Management’. It is a management standard, designed primarily to guide senior managers through the issues that form the basis of good corporate information security. This part of the module examines the need for protecting information, how to … Continue reading
An Introduction to ISO 27001 The ISO 27001 standard was published in October 2005, replacing the old BS7799-2 standard. It specifies the requirements for an ISMS, an Information Security Management System. BS7799 itself was a long standing standard, first published in the nineties as a code of practice. As this matured, a second part emerged … Continue reading
