ISO/IEC JTC 1/SC 27
| Project No. | ISO/IEC TR 27008:2011 |
|---|---|
| Title | <p>ISO/IEC TR 27008:2011 provides guidance on reviewing the implementation and operation of controls, including technical compliance checking of information system controls, in compliance with an organization's established information security standards.</p> <p>ISO/IEC TR 27008:2011 is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations conducting information security reviews and technical compliance checks. It is not intended for management systems audits.</p> |
| Registration number (WIID) | 45244 |
| Scope | <p>ISO/IEC TR 27008:2011 provides guidance on reviewing the implementation and operation of controls, including technical compliance checking of information system controls, in compliance with an organization's established information security standards.</p> <p>ISO/IEC TR 27008:2011 is applicable to all types and sizes of organizations, including public and private companies, government entities, and not-for-profit organizations conducting information security reviews and technical compliance checks. It is not intended for management systems audits.</p> |
| Status | Atcelts |
| ICS group | 35.030 35.040 03.100.70 |