ISO/IEC 27035:2011 信息技术 安全技术 信息安全事件管理

标准编号：ISO/IEC 27035:2011

中文名称：信息技术 安全技术 信息安全事件管理

英文名称：Information technology — Security techniques — Information security incident management

发布日期：2011-09

标准范围

ISO/IEC 27035:2011提供了一种结构化和有计划的方法来:检测、报告和评估信息安全事件；应对和管理信息安全事件；检测、评估和管理信息安全漏洞；通过管理信息安全事件和漏洞，不断改进信息安全和事件管理。ISO/IEC 27035:2011为大中型组织提供了信息安全事件管理指南。较小的组织可以使用本国际标准中描述的一套基本文档、流程和例程，具体取决于其与信息安全风险状况相关的业务规模和类型。它还为提供信息安全事件管理服务的外部组织提供指导。

ISO/IEC 27035:2011 provides a structured and planned approach to:

1. detect, report and assess information security incidents;


2. respond to and manage information security incidents;


3. detect, assess and manage information security vulnerabilities; and


4. continuously improve information security and incident management as a result of managing information security incidents and vulnerabilities.

ISO/IEC 27035:2011 provides guidance on information security incident management for large and medium-sized organizations. Smaller organizations can use a basic set of documents, processes and routines described in this International Standard, depending on their size and type of business in relation to the information security risk situation. It also provides guidance for external organizations providing information security incident management services.

标准预览图