ISO Updates Information Security Standard

The standard provides organizations with guidance on navigating information security risks.

  • Jul 18, 2018

The ISO/IEC 27005:2018 standard, Information technology – Security techniques – Information security risk management, has been revised recently, according to the International Organization for Standardization. The standard provides organizations with guidance on navigating information security risks.

ISO/IEC works complementary to ISO/IEC 27001:2013 to provide the requirements for an information security management system. The updated standard provides guidance for risk management to help meet requirements set out in ISO/IEC 27001.

“ISO/IEC 27005 provides the ‘why, what and how’ for organizations to be able to manage their information security risks effectively in compliance with ISO/IEC 27001,” said Edward Humphreys, Convener of the ISO/IEC working group that developed both ISO/IEC 27001 and ISO/IEC 27005. “It also helps to demonstrate to an organization’s customers or stakeholders that robust risk processes are in place, giving them confidence that they are good to do business with.”

The standard is a key tool in the ISO/IEC 27000 toolkit, according to Humphreys. ISO/IEC 27005 is one of more than a dozen standards in the cyber-risk standard series, including standards for protecting information in the Cloud, cybersecurity, and more.

Product Showcase

  • The MGC Simple Plus

    The MGC Simple Plus is a simple-to-use, portable multi gas detector that runs continuously for three years without being recharged or routinely calibrated after its initial charge and calibration during manufacturing. The detector reliably tests a worksite’s atmosphere for hydrogen sulfide, carbon monoxide, oxygen and combustible gases (LEL). Its durability enables the detector to withstand the harshest treatment and environments, hence earning it an IP 68 rating. The MGC Simple Plus is also compatible with a variety of accessories, such as the GCT External Pump. Visit gascliptech.com for more information. Read More

  • EMSL Analytical, Inc. - Air Sampling Supplies & Testing Labs

    EMSL Analytical, Inc. operates laboratories throughout the United States and Canada. EMSL is a nationally recognized and locally focused provider specializing in fast laboratory results for Asbestos, Mold, Silica, Lead & Metals, Bacteria, Legionella, USP , Combustion By-Products, VOC’s, Radon, PCB’s, Formaldehyde, METH/Fentanyl, Identification of Dust & Unknowns. Sampling Pumps, Cassettes, Media & Supplies available. Reach us at 1-800.220.3675 Read More

  • SwabTek® Cannabis Test Kit

    The SwabTek® Cannabis Test Kit is a single-use spot test designed for use in screening for cannabis compounds in any sample type or on any surface. The test is capable of identifying the presumed presence of cannabinoids in very small quantities, with a level of detection as little as 6 μg in mass. Learn more about the SwabTek® Cannabis Test Kit and the rest of SwabTek surface drug testing solutions through the webinar titled "Everything You Want To Know About Surface Testing" Read More

Featured

Most   Popular

Artificial Intelligence