ISO/IEC 27040

E524360

ISO/IEC standard data storage security standard information security standard

ISO/IEC 27040 is an international standard that provides guidelines and best practices for securing storage systems and data in the context of information security management.

Try in SPARQL Jump to: Surface forms Statements Referenced by

All labels observed (1)

Label	Occurrences
ISO/IEC 27040 canonical	1

Statements (49)

Predicate	Object
instanceOf	ISO/IEC standard ⓘ data storage security standard ⓘ information security standard ⓘ
aimsTo	improve security of storage infrastructures ⓘ reduce risks to stored information ⓘ
appliesTo	cloud storage environments ⓘ data at rest ⓘ storage infrastructure ⓘ storage networking technologies ⓘ storage systems ⓘ
covers	backup and recovery security ⓘ data availability in storage ⓘ data confidentiality in storage ⓘ data integrity in storage ⓘ data sanitization ⓘ encryption for stored data ⓘ key management for storage encryption ⓘ logging and monitoring of storage systems ⓘ secure data deletion ⓘ security controls for storage ⓘ storage system access control ⓘ threats to storage systems ⓘ vulnerabilities in storage environments ⓘ
domain	data storage ⓘ information security ⓘ information technology ⓘ
focusesOn	data storage systems ⓘ information security management ⓘ storage security ⓘ
intendedFor	information security professionals ⓘ organizations managing data storage ⓘ storage system designers ⓘ
language	English ⓘ
partOfSeries	ISO/IEC 27000 family NERFINISHED ⓘ
provides	best practices for storage security ⓘ guidance on data protection in storage ⓘ guidance on risk assessment for storage security ⓘ guidance on storage security controls ⓘ guidelines for securing storage systems ⓘ
publishedBy	International Electrotechnical Commission NERFINISHED ⓘ International Organization for Standardization ⓘ
relatedTo	ISO/IEC 27001 NERFINISHED ⓘ ISO/IEC 27002 NERFINISHED ⓘ
scopeIncludes	cloud-based storage ⓘ on-premises storage ⓘ virtualized storage ⓘ
standardNumber	27040 ⓘ
status	active standard ⓘ
supports	implementation of an information security management system ⓘ

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

ISO/IEC 27000 family → includesStandard → ISO/IEC 27040 ⓘ