iT邦幫忙

DAY 16
2

ISO 27001:2013 與ISO 27001:2005差異比較系列 第 16

ISO 27001:2013 與ISO 27001:2005差異比較#16

ISO 27001:2013 與ISO 27001:2005差異比較#4說明新版ISO27001/27002新增了12項控制措施(controls),將一一進行解說與分享:
16.1.4 Assessment of decision on information security events
資訊安全事件決策的評鑑
Control 控制措施
Information security events should be assessed and it should be decided if they are be classified as information security incidents.
資訊安全事件宜被評鑑, 以決定是否要歸類為資訊安全事故.
Implementation guidance實作指引

The point of contact should assess each information security event using the agreed information security event and incident classification scale and decide whether the event should be classified as an information security incident. Classification and prioritization of incidents can help to identify the impact and extent of an incident.
In cases where the organization has an information security incident response team (ISIRT), the assessment and decision can be forwarded to the ISIRT for confirmation or reassessment.
Results of the assessment and decision should be recorded in detail for the purpose of future reference and verification.

新版的ISO 27001/27002提及要進行資訊安全事件評鑑, 以決定是否要歸類為資訊安全事故, 將事故進行分類並排定優先順序有助識別事故的衝擊與影響程度. 如果組織內有資訊安全事故緊急應變小組(ISIRT), 可將評鑑與決策交給此一小組.


上一篇
ISO 27001:2013 與ISO 27001:2005差異比較#15
下一篇
ISO 27001:2013 與ISO 27001:2005差異比較#17
系列文
ISO 27001:2013 與ISO 27001:2005差異比較31
圖片
  直播研討會
圖片
{{ item.channelVendor }} {{ item.webinarstarted }} |
{{ formatDate(item.duration) }}
直播中

尚未有邦友留言

立即登入留言