| 释义 |
DictionarySeeISOISO 27000
ISO 27000Also referred to as "ISO27k" and "ISO/IEC 27000", it is an ongoing series of standards for managing and measuring information security and its support systems within an enterprise. First published in 2005, the ISO 27000 series is jointly developed by ISO and the IEC. The standards provide requirements of certification (27001) and codes of best practice (27002) in one of the newer arenas that ISO has addressed. It is often the CCO and CSO within an organization who help to oversee the policies and procedures associated with information security management. See ISO, CCO, CSO and Sarbanes-Oxley Act.LegalSeeAuditFinancialSeeCCOThesaurusSeeaudit |