BS ISO/IEC 13335-1:2004
Withdrawn
A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
Information technology. Security techniques. Management of information and communications technology security Concepts and models for information and communications technology security management
Hardcopy , PDF
30-03-2010
English
13-12-2004
FOREWORD
INTRODUCTION
1 SCOPE
2 DEFINITIONS
3 SECURITY CONCEPTS AND RELATIONSHIPS
3.1 SECURITY PRINCIPLES
3.2 ASSETS
3.3 THREATS
3.4 VULNERABILITIES
3.5 IMPACT
3.6 RISK
3.7 SAFEGUARD
3.8 CONSTRAINTS
3.9 SECURITY ELEMENT RELATIONSHIP
4 OBJECTIVE, STRATEGIES AND POLICIES
4.1 ICT SECURITY OBJECTIVES AND STRATEGY
4.2 POLICY HIERARCHY
4.3 CORPORATE ICT SECURITY POLICY ELEMENTS
5 ORGANIZATIONAL ASPECTS OF ICT SECURITY
5.1 ROLES AND RESPONSIBILITIES
5.1.1 Organizational roles, accountabilities and
responsibilities
5.1.2 ICT security forum
5.1.3 Corporate ICT security officer
5.1.4 ICT users
5.2 ORGANIZATIONAL PRINCIPLES
5.2.1 Commitment
5.2.2 Consistent approach
5.2.3 Integrating ICT security
6 ICT SECURITY MANAGEMENT FUNCTIONS
6.1 OVERVIEW
6.2 CULTURAL AND ENVIRONMENTAL CONDITIONS
6.3 RISK MANAGEMENT
Presents the concepts and models fundamental to a basic understanding of ICT security, and addresses the general management issues that are essential to the successful planning, implementation and operation of ICT security.
Committee |
IST/33
|
DevelopmentNote |
Supersedes BS ISO/IEC TR 13335-1, BS ISO/IEC TR 13335-2 and 03/652482 DC. (12/2004)
|
DocumentType |
Standard
|
Pages |
38
|
PublisherName |
British Standards Institution
|
Status |
Withdrawn
|
Supersedes |
Standards | Relationship |
ISO/IEC 13335-1:2004 | Identical |
BS 7799-3:2006 | Information security management systems Guidelines for information security risk management |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.