Sector specific Information Security ISO Management System Standards

Sidney Vianna

Post Responsibly
Staff member
Admin
#1
Taking information security management to another level with a new standard for specific market sectors.

With cyber threats on the rise putting businesses and industries at risk, it is more important than ever that organizations protect their information and that of their customers. It is no surprise, then, that the ISO and IEC standard for information security, ISO/IEC 27001, has become so widely used. A new standard just published will take that a step further, helping to apply the requirements of this flagship standard to specific sectors.

Offering more tailored protection for specific sectors (e.g. finance, transportation and healthcare, and infrastructure projects such as smart cities) to ward off threats to their information has become a political, business and economic imperative, driving a need for sector-specific cyber standards. The recently published ISO/IEC 27009 will help standards developers do just that, providing the necessary advice and guidance on how to create standards that apply ISO/IEC 27001 to individual sectors.

ISO/IEC 27009, Information technology – Security techniques – Sector-specific application of ISO/IEC 27001 – Requirements, joins the ISO/IEC 27000 family of standards to help maximize the effectiveness of ISO/IEC 27001. It explains how to include requirements and controls additional to those in ISO/IEC 27001 that are applicable to specific sectors, enabling them to achieve consistency when developing standards in this family.

“We have already developed several sector-specific standards, such as ISO/IEC 27011 for telecoms, ISO/IEC 27017 for cloud computing and ISO/IEC 27019 for the energy sector. These standards are examples of where controls, additional to those in ISO/IEC 27001, have been defined to meet the requirements of the specific sectors concerned. In developing these standards, it became clear that a harmonized structure and language, based on ISO/IEC 27001, and specific guidance would make the development of future sector-specific standards more effective, and avoid duplication.

read the whole article...
 
Elsmar Forum Sponsor
Thread starter Similar threads Forum Replies Date
T Combining Sector Specific Quality Standards - TS 16949, AS9100 and ISO 9001 Other ISO and International Standards and European Regulations 3
Sidney Vianna Sector Specific Standards based on ISO 9001 as a baseline requirement ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 4
Sidney Vianna Advice from ISO/TC 176 for Sector specific standards Other ISO and International Standards and European Regulations 0
D Non-sector specific requirements: Do I need to write a physical procedure IATF 16949 - Automotive Quality Systems Standard 3
R QMS Standard appilications on different Defense Sector Quality Management System (QMS) Manuals 1
M Informational EU – October 2019 update – State-of-play of joint assessments of Notified Bodies in the medical device sector Medical Device and FDA Regulations and Standards News 2
M Informational EU – State-of-play of joint assessments of Notified Bodies in the medical device sector – June 2019 Medical Device and FDA Regulations and Standards News 0
Sidney Vianna More allegations of unethical behavior in the Aerospace Sector AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 1
M Informational EU – Update on state-of-play of joint assessments of Notified Bodies in the medical device sector Medical Device and FDA Regulations and Standards News 1
M Informational Team-NB published a press release regarding the capacities of notified bodies to meet the sector needs Medical Device and FDA Regulations and Standards News 0
M Informational EU Review and assessment of market surveillance activities 2014-2016 – Medical devices sector Medical Device and FDA Regulations and Standards News 0
M Medical Device News Letter to the health and care sector: update on preparations for a potential no-deal Brexit Medical Device and FDA Regulations and Standards News 0
Sidney Vianna AS9100 News PPAP in the Aerospace Sector - What is it? AS9145 - Requirements for Advanced Product Quality Planning and Production Part Approval Process AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 10
M Medical Device News EU - List of national market surveillance authorities by sector and country EU Medical Device Regulations 0
M Medical Device News State-of-play of joint assessments of Notified Bodies in the medical device sector EU Medical Device Regulations 0
A Should we do business in the automotive sector? IATF 16949 - Automotive Quality Systems Standard 7
C Review on data back-up procedures for Banking sector IT (Information Technology) Service Management 4
D National Highways Sector Schemes Checklists wanted Quality Manager and Management Related Issues 4
J Auditor approval by AABs already authenticated by another AAB from other sector AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 2
S Projections for the Automotive Sector in North America in 2013 & 2014 Career and Occupation Discussions 2
S Automotive sector in North America Imported Legacy Blogs 1
P GMP or quality system "requirement" comparison for different sector Various Other Specifications, Standards, and related Requirements 1
E ISO 9001 Certification in the Argentinian Banking Sector - Mandatory? ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 11
S Taguchi's "Robust Design" for Services Sector - Experience or Papers to Share? Six Sigma 3
Marc Private Sector Preparedness Business Continuity & Resiliency Planning (BCRP) 1
L Environmental Targets - Services to the Education Sector Miscellaneous Environmental Standards and EMS Related Discussions 2
S Writing Good Documentation - Healthcare Sector Document Control Systems, Procedures, Forms and Templates 4
S Cluster or Sector - Organisation Map Process Maps, Process Mapping and Turtle Diagrams 6
J John Seddon's book "Systems thinking in the public sector" Lean in Manufacturing and Service Industries 8
S Quality Policy Contents for Power Sector - Biomass Power Generation Company ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 1
S Seeking example Quality Manual for a small service sector organization Quality Management System (QMS) Manuals 2
J Redefining the Quality Assurance Function - Insurance sector ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 1
J Is this Outsourcing, as per ISO 9001:2008? Financial/Insurance sector ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 9
E Recording Scrap - Problems in the Medical Device Manufacturing Sector ISO 13485:2016 - Medical Device Quality Management Systems 4
Sidney Vianna Article on the 9110:2009 Standard and it's Deployment in the MRO Sector AS9100, IAQG, NADCAP and Aerospace related Standards and Requirements 2
G Deming PDCA Cycle Automotive Mfg Sector Example IATF 16949 - Automotive Quality Systems Standard 7
T ISO vs. EASA/FAA (145) - In aviation sector, why bother with any ISO? EASA and JAA Aviation Standards and Requirements 14
K CQI-9 - Heat Treatment standard for Automotive Sector IATF 16949 - Automotive Quality Systems Standard 1
M How to develop the Health and Safety Committee (textile sector)? Occupational Health & Safety Management Standards 4
D Do I need a Procedure on Legal Requirements? Regulated Insurance Sector ISO 9000, ISO 9001, and ISO 9004 Quality Management Systems Standards 3
V PFMEA's and CONTROL PLAN Examples for aerospace sector APQP and PPAP 1
S Why-Why Analysis Example Related to Service Sector Quality Tools, Improvement and Analysis 5
A Information About Benchmarking Parameters of Castings Used for Automobile Sector Benchmarking 2
P What influence have Juran Deming & Crosby had on the retail sector Philosophy, Gurus, Innovation and Evolution 1
V APQP Implementation In A Non-automotive Sector APQP and PPAP 1
P How many people are involved in Quality in the Water and Wastewater Sector Career and Occupation Discussions 3
I Suitable ISO 9001 Registrar - IT sector engaged in delivering Web based solutions Registrars and Notified Bodies 18
Q FMEA for Inspection and Test required by TS 16949? Semiconductor Sector FMEA and Control Plans 6
R Oil / Gas / Mining sector QMS implementation - ISO 29001:2003 Various Other Specifications, Standards, and related Requirements 7
D Replicating Forum Success to Oil & Gas Sector - ISO 29001 Other ISO and International Standards and European Regulations 4

Similar threads

Top Bottom