Status : Withdrawn

This standard has been revised by ISO/IEC 27005:2011

Abstract

ISO/IEC 27005:2008 provides guidelines for information security risk management. It supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach. Knowledge of the concepts, models, processes and terminologies described in ISO/IEC 27001 and ISO/IEC 27002 is important for a complete understanding of ISO/IEC 27005:2008. ISO/IEC 27005:2008 is applicable to all types of organizations (e.g. commercial enterprises, government agencies, non-profit organizations) which intend to manage risks that could compromise the organization's information security.

General information

  • Status
     : Withdrawn
    Publication date
     : 2008-06
    Stage
    : Withdrawal of International Standard [95.99]
  • Edition
     : 1
    Number of pages
     : 55
  • Technical Committee :
    ISO/IEC JTC 1/SC 27
    ICS :
    35.030  03.100.70 
  • RSS updates

Life cycle

Got a question?

Check out our FAQs

Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

  2. Store
  3. Standards catalogue
  4. TC
  5. ISO/IEC JTC 1/SC 27
  6. ISO/IEC 27005:2008