🔍
Purchase the full subscription package now and enjoy a 40% discount, along with free updates for future editions.
AS ISO/IEC 27013:2017
$177.61
Information technology — Security techniques — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1
Adopts ISO/IEC 27013:2015 to provide guidance to organizations on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1.
Table of contents
Header
About this publication
Preface
Introduction
1 Scope
2 Normative references
3 Terms, definitions and abbreviated terms
4 Overviews of ISO/IEC 27001 and ISO/IEC 20000-1
4.1 Understanding the International Standards
4.2 ISO/IEC 27001 concepts
4.3 ISO/IEC 20000-1 concepts
4.4 Similarities and differences
5 Approaches for integrated implementation
5.1 General
5.2 Considerations of scope
5.3 Pre-implementation scenarios
5.3.1 General
5.3.2 Neither standard is currently used as the basis for a management system
5.3.3 A management system exists which fulfils the requirement of one of the standards
5.3.4 Separate management systems exist which fulfil the requirements of each standard
6 Integrated implementation considerations
6.1 General
6.2 Potential challenges
6.2.1 The usage and meaning of asset
6.2.2 Design and transition of services
6.2.3 Risk assessment and management
6.2.4 Differences in risk acceptance levels
6.2.5 Incident and problem management
6.2.6 Change management
6.3 Potential gains
6.3.1 Use of the Plan-Do-Check-Act cycle
6.3.2 Service level management and reporting
6.3.3 Management commitment
6.3.4 Capacity management
6.3.5 Management of third party risk
6.3.6 Continuity and availability management
6.3.7 Supplier management
6.3.8 Configuration management
6.3.9 Release and deployment management
6.3.10 Budgeting and accounting
Annex A
A.1 General
Annex B
B.1 General
Bibliography
Cited references in this standard
Please select a variation to view its description.
| Published | 12/05/2017 |
|---|---|
| Pages | 39 |
Please select a variation to view its pdf.
