Lessons From the ISO/IEC 27005:2018 Security Risk Management Guidelines

13 August 2018

The International Standards Organization (ISO) recently released an updated version of its security risk management guidelines, ISO/IEC 27005:2018, which are a framework for effective management of cybersecurity risks. Edward Humphreys, convener of the working group that developed both the ISO 27001 and ISO 27005, said in a press release that the ISO 27005 “provides the ‘why, what and how’ for organizations to be able to manage their information security risks effectively in compliance with ISO/IEC 27001.” The previous version of ISO 27005 was released in 2011 and had become somewhat out of alignment with the ISO 27001:2013.

Read full news article on Security Intelligence

Date:

13 August 2018

Categorie(s):

NEWS

Tag(s):

Cybersecurity Framework, Guidelines, Lessons, Risk Management

Hackers Actively Exploiting Ivanti Pulse Secure Vulnerabilities8 May 2024
MedStar Health and DocGo Reveal Data Breaches8 May 2024
ExtraHop releases AI tools to automate SOC workflows8 May 2024
AppViewX AVX ONE provides visibility, automation and control of certificates and keys8 May 2024
New Relic introduces Secure Developer Alliance for enhanced security insights8 May 2024