CSA ISO/IEC TR 13335-2 : 2001
Withdrawn
A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
INFORMATION TECHNOLOGY - GUIDELINES FOR THE MANAGEMENT OF IT SECURITY - PART 2: MANAGING AND PLANNING IT SECURITY
29-03-2006
12-01-2013
1 Scope
2 Reference
3 Terms and definitions
4 Structure
5 Aim
6 Background
7 Management of IT Security
7.1 Planning and Management Process Overview
7.2 Risk Management Overview
7.3 Implementation Overview
7.4 Follow-up Overview
7.5 Integrating IT Security
8 Corporate IT Security Policy
8.1 Objectives
8.2 Management Commitment
8.3 Policy Relationships
8.4 Corporate IT Security Policy Elements
9 Organizational Aspects of IT Security
9.1 Roles and Responsibilities
9.2 Commitment
9.3 Consistent Approach
10 Corporate Risk Analysis Strategy Options
10.1 Baseline Approach
10.2 Informal Approach
10.3 Detailed Risk Analysis
10.4 Combined Approach
11 IT Security Recommendations
11.1 Safeguard Selection
11.2 Risk Acceptance
12 IT System Security Policy
13 IT Security Plan
14 Implementation of Safeguards
15 Security Awareness
16 Follow-up
16.1 Maintenance
16.2 Security Compliance
16.3 Monitoring
16.4 Incident Handling
17 Summary
Provides guidelines which addresses subjects essential to the management of IT security, and the relationship between those subjects. These guidelines are useful for the identification and the management of all aspects of IT security.
DocumentType |
Standard
|
PublisherName |
Canadian Standards Association
|
Status |
Withdrawn
|
Standards | Relationship |
ISO/IEC TR 13335-2:1997 | Similar to |
ISO/IEC TR 13335-1:1996 | Information technology — Guidelines for the management of IT Security — Part 1: Concepts and models for IT Security |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.