Gives a common basis for organisations to develop, implement and measure effective security management practice. Includes the following sections: assets classification and control; physical and environmental security; computer and network management; system access control; systems development and maintenance; business continuity planning. Also gives definitions. BS AMD 9911 RENUMBERS