If you have difficulty in submitting comments on draft standards you can use a commenting template and email it to admin.start@bsigroup.com. The commenting template can be found here.

BS ISO/IEC 27004 ISO/IEC 27004 Information technology. Security techniques. Information security management. Monitoring, measurement, analysis and evaluation

Source:
ISO/IEC
Committee:
IST/33/1 - Information Security Management Systems
Categories:
Comment period start date:
Comment period end date:
Number of comments:
0

Comment by:

Scope

This document provides guidelines intended to assist organizations in evaluating the information security performance and the effectiveness of an information security management system (ISMS). It thereby assists organizations to fulfil the requirements of ISO/IEC 27001:2022, Clause 9.1. It establishes:

a) the monitoring and measurement of information security performance;

b) the monitoring and measurement of the effectiveness of an ISMS, including its processes and controls;

c) the analysis and evaluation of the results of monitoring and measurement.

This document excludes any and all aspects of conformity assessment.

Read draft and comment

Comment on proposal

Required form fields are indicated by an asterisk (*) character.


Please email further comments to: admin.start@bsigroup.com

Follow standard

You are now following this standard. Weekly digest emails will be sent to update you on the following activities:

You can manage your follow preferences from your Account. Please check your mailbox junk folder if you don't receive the weekly email.

Unfollow standard

You have successfully unsubscribed from weekly updates for this standard.

Error