ISO/IEC 27005

From Wikipedia, the free encyclopedia

ISO/IEC 27005 part of a growing family of ISO/IEC ISMS standards, the 'ISO/IEC 27000 series' is an information security standard being currently developed by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). Its current title is Information technology -- Security techniques -- Information security risk management.

The purpose of ISO/IEC 27005 is to provide techniques for information security risk management that includes information and communications technology security risk management. Publication is not expected until 2009.

[edit] See also

• ISO/IEC 27000-series

[edit] External links

• Current status of the ISO 27005 standard