ISO/IEC 19770-1:2017 信息技术 IT资产管理 第1部分:IT资产管理系统 要求
标准编号:ISO/IEC 19770-1:2017
中文名称:信息技术 IT资产管理 第1部分:IT资产管理系统 要求
英文名称:Information technology — IT asset management — Part 1: IT asset management systems — Requirements
发布日期:2017-12
标准范围
ISO/IEC 19770-1:20 17规定了组织环境中IT资产管理系统的要求。ISO/IEC 19770-1:20 17可应用于所有类型的IT资产以及所有类型和规模的组织。注1本文档旨在专门用于管理IT资产,但也可应用于其他资产类型。它可以全部或部分地适合于管理嵌入式软件和固件,然而其用于这些目的的用途尚未确定。它不打算管理信息资产本身,即,它不打算将信息作为独立于硬件和软件资产的资产来管理。涵盖了某些类型的数据和信息,例如关于范围内IT资产的数据和信息,并且根据范围的定义,它可以涵盖数字信息内容资产。有关IT资产的解释,请参见简介。注2:本文档没有规定管理特定IT资产类型的财务、会计或技术要求。注3就本文件而言,术语“资讯科技资产管理系统”是指资讯科技资产管理的管理系统。ISO/IEC 19770-1:20 17是ISO 55001:2014的特定学科扩展,有变化,而不是该国际标准的特定行业应用。ISO 55001:2014旨在特别用于管理实物资产,但它也可以应用于其他资产类型。本文件规定了除ISO 55001:2014中规定的要求之外的IT资产管理要求。符合本文件并不意味着符合ISO 55001:2014。内部和外部各方可以使用ISO/IEC 19770-1:20 17来评估组织满足组织自身IT资产管理要求的能力。
ISO/IEC 19770-1:2017 specifies requirements for an IT asset management system within the context of the organization.
ISO/IEC 19770-1:2017 can be applied to all types of IT assets and by all types and sizes of organizations.
NOTE 1 This document is intended to be used for managing IT assets in particular, but it can also be applied to other asset types. It can be suitable, in whole or in part, for managing embedded software and firmware, however its use for these purposes has not been determined. It is not intended for managing information assets per se, i.e. it is not intended for managing information as an asset independent of hardware and software assets. Certain types of data and information are covered, such as data and information about IT assets in scope, and depending on how the scope is defined, it can cover digital information content assets. See the Introduction for an explanation about IT assets.
NOTE 2 This document does not specify financial, accounting, or technical requirements for managing specific IT asset types.
NOTE 3 For the purposes of this document, the term "IT asset management system" is used to refer to a management system for IT asset management.
ISO/IEC 19770-1:2017 is a discipline-specific extension of ISO 55001:2014, with changes, and is not a sector-specific application of that International Standard. ISO 55001:2014 is intended to be used for managing physical assets in particular, but it can also be applied to other asset types. This document specifies requirements for the management of IT assets which are additional to those specified in ISO 55001:2014. Conformance to this document does not imply conformance to ISO 55001:2014.
ISO/IEC 19770-1:2017 can be used by internal and external parties to assess the organization's ability to meet the organization's own IT asset management requirements.
标准预览图
