Skip to content
Please enter a keyword to search

  • ISO/IEC TR 38505-2:2018

    Current The latest, up-to-date edition.

    Information technology — Governance of IT — Governance of data — Part 2: Implications of ISO/IEC 38505-1 for data management

    Available format(s):  Hardcopy, PDF, PDF 3 Users, PDF 5 Users, PDF 9 Users

    Language(s):  English

    Published date:  16-05-2018

    Publisher:  International Organization for Standardization

    Add To Cart

    Abstract - (Show below) - (Hide below)

    This document provides guidance to the members of governing bodies of organizations and their executive managers on the implications of ISO/IEC 38505-1 for data management. It assumes understanding of the principles of ISO/IEC 38500 and familiarization with the data accountability map and associated matrix of considerations, as presented in ISO/IEC 38505-1.

    This document enables an informed dialogue between the governing body and the senior/executive management team of an organization to ensure that the data use throughout the organization aligns with the strategic direction set by the governing body.

    This document covers the following:

    — identifying the information that a governing body requires in order to evaluate and direct the strategies and policies relating to a data-driven business;

    — identifying the capabilities and potential of measurement systems that can be used to monitor the performance of data and its uses.

    General Product Information - (Show below) - (Hide below)

    Committee ISO/IEC JTC 1/SC 40
    Document Type Standard
    Publisher International Organization for Standardization
    Status Current

    Standards Referencing This Book - (Show below) - (Hide below)

    ISO/IEC 27017:2015 Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services
    ISO/IEC 38500:2015 Information technology — Governance of IT for the organization
    ISO 31000:2009 Risk management Principles and guidelines
    ISO/IEC TR 38502:2014 Information technology Governance of IT Framework and model
    ISO/IEC 38505-1:2017 Information technology — Governance of IT — Governance of data — Part 1: Application of ISO/IEC 38500 to the governance of data
    ISO/IEC 27002:2013 Information technology Security techniques Code of practice for information security controls
    ISO/IEC 27018:2014 Information technology Security techniques Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
    ISO/IEC 19086-1:2016 Information technology Cloud computing Service level agreement (SLA) framework Part 1: Overview and concepts
    ISO/IEC 19770-1:2012 Information technology Software asset management Part 1: Processes and tiered assessment of conformance
    ISO/IEC 20000-1:2011 Information technology Service management Part 1: Service management system requirements
    ISO/IEC 19944:2017 Information technology Cloud computing Cloud services and devices: Data flow, data categories and data use
    ISO/TR 31004:2013 Risk management — Guidance for the implementation of ISO 31000
    ISO/IEC 27000:2016 Information technology Security techniques Information security management systems Overview and vocabulary
    ISO/IEC 17789:2014 Information technology — Cloud computing — Reference architecture
    ISO/IEC 17788:2014 Information technology — Cloud computing — Overview and vocabulary
    ISO/IEC 29100:2011 Information technology — Security techniques — Privacy framework
    ISO/IEC 27035-1:2016 Information technology — Security techniques — Information security incident management — Part 1: Principles of incident management
    View more information

    • Access your standards online with a subscription

      Features

      • Simple online access to standards, technical information and regulations
      • Critical updates of standards and customisable alerts and notifications
      • Multi - user online standards collection: secure, flexibile and cost effective