Zuletzt bearbeitet am 14.04.2024 um 12:32:52 durch Sachkunde24-Redaktion.
- Name:
- ISO/IEC 27014
- Titel (Deutsch):
- Informationssicherheit, Cybersecurity und Datenschutz - Governance von Informationssicherheit
- Titel (Englisch):
- Information security, cybersecurity and privacy protection - Governance of information security
- letzte Aktualisierung:
- :2020-12
- letzte Aktualisierung:
- 01.12.2020
- Seiten:
- 16
- Link (Herausgeber):
- https://www.beuth.de/de/norm/iso-iec-27014/333967966
Beschreibung
Contents
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Abbreviated terms
5 Use and structure of this document
6 Governance and management standards
Overview
Governance activities within the scope of an ISMS
Other related standards
Thread of governance within the organization
7 Entity governance and information security governance
Overview
Objectives
Objective 1: Establish integrated comprehensive entity-wide information security
Objective 2: Make decisions using a risk-based approach
Objective 3: Set the direction of acquisition
Objective 4: Ensure conformance with internal and external requirements
Objective 5: Foster a security-positive culture
Objective 6: Ensure the security performance meets current and future requirements of the entity
Processes
8 The governing body’s requirements on the ISMS
Organization and ISMS
Scenarios (see Annex B)