Post

2 followers Follow
1
Vote
Avatar

ISO/IEC Authoritative Sources Upload/Mapping

UCF Team,

Could you please upload/map the following authoritative sources?

International Organization of Standardization (ISO) / International Electro-technical Commission (IEC)

ISO/IEC 15408

  1. Part 1 - Introduction And General Model (15408-1)
  2. Part 2 - Security Functional Requirements (15408-2)
  3. Part 3 - Security Assurance Requirements (15408-3)

ISO/IEC 20000

  1. ISO/IEC 20000-1:2011 Service management system requirements
  2. ISO/IEC 20000-2:2012 Guidance on the application of service management systems
  3. ISO/IEC TR 20000-3:2012 - Service providers
  4. ISO/IEC TR 20000-4:2010 - Process assessment model
  5. ISO/IEC TR 20000-11:2015 - Guidance on the relationship between ISO/IEC 20000-1:2011 and Service Management Frameworks: ITIL

ISO/IEC 27000 (2016)

  1. ISO/IEC 27001 - Information Security Management Systems
  2. ISO/IEC 27002 - Code Of Practice For Information Security Controls
  3. ISO/IEC 27005 - Information Security Risk Management
  4. ISO/IEC 27006 - Requirements For Bodies Providing Audit And Certification Of Information Security Management Systems
  5. 27007 - Guidelines For Information Security Management Systems Auditing
  6. ISO/IEC TR 27008 - Guidelines For Auditors On Information Security Controls
  7. ISO/IEC 27013 - Guidance On The Integrated Implementation Of ISO/IEC 27001 and ISO/IEC 20000‑1
  8. ISO/IEC 27014 - Governance Of Information Security
  9. ISO/IEC 27018 - Code Of Practice For Protection Of Personally Identifiable Information (PII) In Public Clouds Acting As PII Processors

Thank you.

Francois Le

Please sign in to leave a comment.

1 comment