标准编号:ISO/IEC 27004:2016
中文名称:信息技术 安全技术 信息安全管理 监控、测量、分析和评估
英文名称:Information technology — Security techniques — Information security management — Monitoring, measurement, analysis and evaluation
发布日期:2016-12
标准范围
This document provides guidelines intended to assist organizations in evaluating the information security performance and the effectiveness of an information security management system in order to fulfil the requirements of ISO/IEC 27001:2013, 9.1. It establishes:a) the monitoring and measurement of information security performance;b) the monitoring and measurement of the effectiveness of an information security management system (ISMS) including its processes and controls;c) the analysis and evaluation of the results of monitoring and measurement.This document is applicable to all types and sizes of organizations.
立即下载标准文件