ISO/IEC TR 38505-2:2018
Current
The latest, up-to-date edition.
Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1 for data management
Hardcopy , PDF
English
16-05-2018
This document provides guidance to the members of governing bodies of organizations and their executive managers on the implications of ISO/IEC 38505-1 for data management. It assumes understanding of the principles of ISO/IEC 38500 and familiarization with the data accountability map and associated matrix of considerations, as presented in ISO/IEC 38505-1.
This document enables an informed dialogue between the governing body and the senior/executive management team of an organization to ensure that the data use throughout the organization aligns with the strategic direction set by the governing body.
This document covers the following:
— identifying the information that a governing body requires in order to evaluate and direct the strategies and policies relating to a data-driven business;
— identifying the capabilities and potential of measurement systems that can be used to monitor the performance of data and its uses.
| Committee |
ISO/IEC JTC 1/SC 40
|
| DocumentType |
Standard
|
| Pages |
36
|
| PublisherName |
International Organization for Standardization
|
| Status |
Current
|
| Standards | Relationship |
| SA/SNZ TR ISO/IEC 38505.2:2019 | Identical |
| INCITS/ISO/IEC TR 38505-2 : 2018(R2019) | Identical |
| INCITS/ISO/IEC TR 38505-2:2018(R2024) | Identical |
| INCITS/ISO/IEC TR 38505-2:2018(R2024) | Identical |
| PD ISO/IEC TR 38505-2:2018 | Identical |
| UNE-ISO/IEC TR 38505-2:2023 IN | Identical |
| ISO/IEC 27017:2015 | Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services |
| ISO/IEC 38500:2015 | Information technology — Governance of IT for the organization |
| ISO 31000:2009 | Risk management — Principles and guidelines |
| ISO/IEC TR 38502:2014 | Information technology — Governance of IT — Framework and model |
| ISO/IEC 38505-1:2017 | Information technology — Governance of IT — Governance of data — Part 1: Application of ISO/IEC 38500 to the governance of data |
| ISO/IEC 27002:2013 | Information technology — Security techniques — Code of practice for information security controls |
| ISO/IEC 27018:2014 | Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors |
| ISO/IEC 19086-1:2016 | Information technology — Cloud computing — Service level agreement (SLA) framework — Part 1: Overview and concepts |
| ISO/IEC 19770-1:2012 | Information technology — Software asset management — Part 1: Processes and tiered assessment of conformance |
| ISO/IEC 20000-1:2011 | Information technology — Service management — Part 1: Service management system requirements |
| ISO/IEC 19944:2017 | Information technology — Cloud computing — Cloud services and devices: Data flow, data categories and data use |
| ISO/TR 31004:2013 | Risk management — Guidance for the implementation of ISO 31000 |
| ISO/IEC 27000:2016 | Information technology — Security techniques — Information security management systems — Overview and vocabulary |
| ISO/IEC 17789:2014 | Information technology — Cloud computing — Reference architecture |
| ISO/IEC 17788:2014 | Information technology — Cloud computing — Overview and vocabulary |
| ISO/IEC 29100:2011 | Information technology — Security techniques — Privacy framework |
| ISO/IEC 27035-1:2016 | Information technology — Security techniques — Information security incident management — Part 1: Principles of incident management |
Access your standards online with a subscription
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.
Important note : Users cannot be edited or removed once added to your Multi user PDF.