ISO/IEC 27035
E514708
ISO/IEC 27035 is an international standard that provides guidelines and best practices for managing and responding to information security incidents within organizations.
All labels observed (1)
| Label | Occurrences |
|---|---|
| ISO/IEC 27035 canonical | 2 |
Statements (47)
| Predicate | Object |
|---|---|
| instanceOf |
ISO/IEC standard
ⓘ
information security standard ⓘ international standard ⓘ |
| aimsTo |
improve organizational resilience
ⓘ
minimize impact of information security incidents ⓘ support continual improvement of incident management ⓘ |
| appliesTo |
non-profit organizations
ⓘ
organizations of all sizes ⓘ private sector organizations ⓘ public sector organizations ⓘ |
| covers |
incident assessment
ⓘ
incident communication ⓘ incident detection ⓘ incident learning ⓘ incident reporting ⓘ incident response ⓘ |
| defines | process for information security incident management ⓘ |
| domain | information security management ⓘ |
| encourages |
documentation of incidents
ⓘ
measurement and monitoring of incident management performance ⓘ structured approach to incident handling ⓘ |
| focusesOn |
information security incident management
ⓘ
information security incident response ⓘ |
| hasType | guidance standard ⓘ |
| helpsWith |
compliance with information security policies
ⓘ
demonstrating due diligence in incident management ⓘ |
| intendedFor |
IT security professionals
ⓘ
incident response teams ⓘ information security managers ⓘ risk managers ⓘ |
| language | English ⓘ |
| partOfSeries | ISO/IEC 27000 family NERFINISHED ⓘ |
| provides |
best practices for information security incident response
ⓘ
guidelines for information security incident management ⓘ |
| publishedBy |
International Electrotechnical Commission
NERFINISHED
ⓘ
International Organization for Standardization ⓘ |
| relatedTo |
IT service management
ⓘ
business continuity management ⓘ cybersecurity incident response ⓘ |
| sector | information technology ⓘ |
| status | active standard ⓘ |
| supports |
ISO/IEC 27001
NERFINISHED
ⓘ
implementation of an Information Security Management System ⓘ |
| usedFor |
coordinating incident handling activities
ⓘ
designing incident response procedures ⓘ establishing incident management policies ⓘ post-incident review and lessons learned ⓘ |
Referenced by (2)
Full triples — surface form annotated when it differs from this entity's canonical label.