Item:   Total: 

Call us toll free: 1 877 317 3454

IT Governance
Books and tools for IT Governance, risk management and compliance
Select your region  
Featured Product

New Title

21st Century Cyberwarfare

 

21st Century Cyberwarfare
 
 
Secure Ordering

Credit Card Processing

We use the payment gateway service of Authorize.Net to provide secure and confidential payment.

 
Returns Policy

If you are not satisfied with any item, return it for an exchange or refund.

 
Privacy Statement

IT Governance will never share or exchange your details with any 3rd party.

 
 

ISO27004 (ISO 27004) Metrics Concerning ISMS (Download)

Our Price:
$159.95 USD


Buy
  Each
 

ISO27004 ISO 27004 Metrics Concerning ISMS

This standard provides guidance on the development and use of measures and measurement in order to assess the effectiveness of an ISMS. It also provides guidance on the measures and measurement for controls or groups of controls.

All of the advice and guidance within ISO/IEC 27004:2009 is designed to be used within the scope of ISO/IEC 27001.

The metrics outlined in the standard cover policy, information security risk management, control objectives, controls, processes and procedures. Helping you to determine whether any of the ISMS processes or controls need to be changed or improved.

This International Standard gives recommendations concerning the following activities as a basis for an organisation to fulfil measurement requirements specified in ISO/IEC 27001:

  • Developing measures (i.e. base measures, derived measures and indicators),
  • Implementing and operating an information security measurement programme,
  • Collecting and analysing data,
  • Developing measurement results,
  • Communicating developed measurement results to the relevant stakeholders,
  • Using measurement results as contributing factors to ISMS-related decisions,
  • Using measurement results to identify needs for improving the implemented ISMS, including its scope, policies, objectives, controls, processes and procedures; and
  • Facilitating continual improvement of the information security measurement programme.

ISO/IEC 27004:2009 is applicable to all types and sizes of organisation.

Key Features and Benefits:

  • Provides guidance on the development, implementation use of metrics to measure the effectiveness of an ISO 27001-compliant ISMS, controls or groups of controls. Helping you to quantify the payback to your organisation of implementing an ISMS.
  • Covers not just the development, implementation and use of metrics, but also the communication of the results. Helping you to ensure management buy-in for future projects.
  • The use of this standard provides opportunities to identify areas in need of improvement, facilitating continual improvement. Thus leading more secure information, cost savings and increases in efficiency.

We also offer this standard in a hardcopy format - ISO/IEC 27004:2009 (Hardcopy).


Publisher: BSI

Format: Electronic Download PDF (1.44MB)

Licensing Terms: Governed by BSI's Copyright Terms and Conditions.

Availability: Immediate Download


Order this standard to the measurement of the effectiveness of an ISMS today - order for immediate download now!

Product Reviews

Be the first to review this product! | Write a review

Help our customers make the best choices by telling everyone what you think about this product.
Payment options

 

Links | Contact us | Shipping | Terms & Privacy  | Sitemap  | Information Security | ISO27001 Training


© 2008 -  IT Governance Ltd. All rights reserved.


eCommerce by Xanthos