Information Security in the Organization: Information Security Management System - ISO Standards
A. Stawiński, B. Sakowicz, D. Makowski (Lodz Univ. of Techn., Poland), M. Drozd, P. Sztoch (LTC Ltd, Poland)
The model of rational and safe management of access to resources, content and information among entities operating in both the public and private sectors is currently undergoing significant changes. It is easiest to define Information Security Management System (ISMS) as a set of rules, standards and policies related to information security management. The most important set of ordering, explanatory, advising and introductory standards is the 2700X family of ISO. The main goal of this group is to collect and standardize already existing studies devoted to security and information security management.
Download one page abstract