ISO Security Management Categories
Chapter 2 reviews the 14 categories identified in the ISO 27000 series that fall under the umbrella of risk management.
Keywords
ISO 27000 series; Plan-Do-Check-Act
In 2013, the ISO/IEC 27000 series was updated to reflect a more refined control set. There are 14 categories identified in the standard, all of which fall under the umbrella of risk management.
• Policy Management
• Security Organization Management
• Human Resources Security Management
• Asset Management
• Access Management
• Cryptography
• Physical and Environmental Security Management
• Security Operations Management
• Communications ...
Get Infosec Management Fundamentals now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.