ISO/IEC TR 38505-2:2018
Current
The latest, up-to-date edition.
Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1 for data management
Hardcopy , PDF , PDF 3 Users , PDF 5 Users , PDF 9 Users
English
16-05-2018
Important note : Users cannot be edited or removed once added to your Multi user PDF.
This document provides guidance to the members of governing bodies of organizations and their executive managers on the implications of ISO/IEC 38505-1 for data management. It assumes understanding of the principles of ISO/IEC 38500 and familiarization with the data accountability map and associated matrix of considerations, as presented in ISO/IEC 38505-1.
This document enables an informed dialogue between the governing body and the senior/executive management team of an organization to ensure that the data use throughout the organization aligns with the strategic direction set by the governing body.
This document covers the following:
— identifying the information that a governing body requires in order to evaluate and direct the strategies and policies relating to a data-driven business;
— identifying the capabilities and potential of measurement systems that can be used to monitor the performance of data and its uses.
| Committee |
ISO/IEC JTC 1/SC 40
|
| DocumentType |
Standard
|
| Pages |
36
|
| PublisherName |
International Organization for Standardization
|
| Status |
Current
|
| Standards | Relationship |
| SA/SNZ TR ISO/IEC 38505.2:2019 | Identical |
| INCITS/ISO/IEC TR 38505-2 : 2018(R2019) | Identical |
| CSA ISO/IEC TR 38505-2:19 | Identical |
| INCITS/ISO/IEC TR 38505-2:2018(R2024) | Identical |
| INCITS/ISO/IEC TR 38505-2:2018(R2024) | Identical |
| PD ISO/IEC TR 38505-2:2018 | Identical |
| UNE-ISO/IEC TR 38505-2:2023 IN | Identical |
| ISO/IEC 27017:2015 | Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services |
| ISO/IEC 38500:2015 | Information technology — Governance of IT for the organization |
| ISO 31000:2009 | Risk management Principles and guidelines |
| ISO/IEC TR 38502:2014 | Information technology Governance of IT Framework and model |
| ISO/IEC 38505-1:2017 | Information technology — Governance of IT — Governance of data — Part 1: Application of ISO/IEC 38500 to the governance of data |
| ISO/IEC 27002:2013 | Information technology Security techniques Code of practice for information security controls |
| ISO/IEC 27018:2014 | Information technology Security techniques Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors |
| ISO/IEC 19086-1:2016 | Information technology Cloud computing Service level agreement (SLA) framework Part 1: Overview and concepts |
| ISO/IEC 19770-1:2012 | Information technology Software asset management Part 1: Processes and tiered assessment of conformance |
| ISO/IEC 20000-1:2011 | Information technology Service management Part 1: Service management system requirements |
| ISO/IEC 19944:2017 | Information technology Cloud computing Cloud services and devices: Data flow, data categories and data use |
| ISO/TR 31004:2013 | Risk management — Guidance for the implementation of ISO 31000 |
| ISO/IEC 27000:2016 | Information technology Security techniques Information security management systems Overview and vocabulary |
| ISO/IEC 17789:2014 | Information technology — Cloud computing — Reference architecture |
| ISO/IEC 17788:2014 | Information technology — Cloud computing — Overview and vocabulary |
| ISO/IEC 29100:2011 | Information technology — Security techniques — Privacy framework |
| ISO/IEC 27035-1:2016 | Information technology — Security techniques — Information security incident management — Part 1: Principles of incident management |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.