ISO27008 (ISO/IEC 27008) Guidelines for Auditors on Information Security Controls (PDF)

ISO27008 (ISO/IEC 27008) Guidelines for Auditors on Information Security Controls (PDF)

Order ISO27008 the International Standard for auditors containing guidelines to information security controls - buy now!

ISO/IEC TR 27008:2011 - buy this guideline for auditors today!


Quantity:  
Price: R 3 915,00 (ZAR) 
Ready to order
Sub Total: R 0,00 (ZAR)
CHECKOUT
 

Other payment options available

 

ISO27008 (ISO/IEC 27008) Guidelines for Auditors on Information Security Controls

ISO/IEC TR 27008:2011 will show you how to review the implementation and operation of information security controls. It supports the risk management process in ISO/IEC 27001 and the information security controls in ISO/IEC 27002.

This standard will be of help in particular where technical compliance checking of information system controls is taking place, in compliance with an organisation's established information security standards.

ISO/IEC TR 27008:2011 is applicable in any type of organisation. It is ideal for organisations undertaking information security reviews and technical compliance checks. It is widely applicable!

Why buy this standard?

Information security control reviews and technical compliance testing should be integral parts of any enterprise-wide information security programme. They will help an organisation to:

  • Identify and understand the extent of potential problems or shortfalls in the organisation's implementation and operation of information security controls, information security standards and, consequently, technical information security controls
  • Identify and understand the potential organisational impacts of inadequately mitigated information security threats and vulnerabilities
  • Prioritise information security risk mitigation activities
  • Confirm that previously identified or emergent information security weaknesses or deficiencies have been adequately addressed, and/or
  • Support budgetary decisions within the investment process and other management decisions relating to improvement of the organisation's information security management

Thus you cannot afford to be without this standard.....

Key Features and Benefits:

  • A guideline to conducting reviews of the implementation and operation information security controls within an organisation. Helping to mitigate any risks to the organisation's information.
  • Applicable to any size or type of organisation, can be employed by public, private or not-for-profit organisations. This makes the standard widely applicable.
  • ISO/IEC TR 27008:2011 supports the risk management process in ISO/IEC 27001 and the information security controls in ISO/IEC 27002. This means the standard is fully aligned with the two key International standards.

Please Note: We supply, interchangeably, the British and other national or international adoptions of ISO/IEC 27008, which all contain exactly the same content.

Purchase and use of the PDF version of this product is subject to this EULA.

Publisher: ISO/IEC
Pages: 36
Format: PDF
Published Date: 6 October 2011
Availability: Immediate Download

Order this best practice guideline today!

Product Rating: (0.00)   # of Ratings: 0   (Only registered customers can rate)

There are no comments for this product.