NBN ISO/IEC 27004:2017

Information technology - Security techniques - Information security management - Monitoring measurement, analysis and evaluation (ISO/IEC 27004:2016)

ACTIVE

About this standard

Languages
English
Type
NBN
Standards committee
AGORIA-ICT/J00127
Status
ACTIVE
Publication date
22 March 2017
Replaces
NBN ISO/IEC 27004:2014
ICS Code
35.030 (IT Security)
Withdrawn Date

About this training

Summary

This document provides guidelines intended to assist organizations in evaluating the information security performance and the effectiveness of an information security management system in order to fulfil the requirements of ISO/ IEC 27001:2013, 9.1. It establishes:
a) the monitoring and measurement of information security performance
b) the monitoring and measurement of the effectiveness of an information security management system (ISMS) including its processes and controls
c) the analysis and evaluation of the results of monitoring and measurement.
This document is applicable to all types and sizes of organizations.