ISO/TR 13569:2005 银行和相关的金融设备 信息保密导则

标准编号：ISO/TR 13569:2005

中文名称：银行和相关的金融设备 信息保密导则

英文名称：Financial services — Information security guidelines

发布日期：2005-11

标准范围

ISO TR 13569:2005为金融服务业机构制定信息安全计划提供了指南。它包括对该方案的政策、组织以及结构、法律和监管组成部分的讨论。讨论了选择和实施安全控制的考虑因素，以及现代金融服务机构内部管理信息安全风险所需的要素。在考虑机构的业务环境、实践和程序的基础上，给出了建议。本指南包括对法律和监管合规性问题的讨论，在计划的设计和实施过程中应予以考虑。

ISO TR 13569:2005 provides guidelines on the development of an information security programme for institutions in the financial services industry. It includes discussion of the policies, organization and the structural, legal and regulatory components of such a programme. Considerations for the selection and implementation of security controls, and the elements required to manage information security risk within a modern financial services institution are discussed. Recommendations are given that are based on consideration of the institutions' business environment, practices and procedures. Included in this guidance is a discussion of legal and regulatory compliance issues, which should be considered in the design and implementation of the programme.

标准预览图