CEN/CLC/JTC 13/WG 2 - Cybersecurity Management Systems
The WG considers national and international standards for adoption in the domain of management system standards including supporting control sets covering information and cyber security. Where not being developed by other SDO's, the WG may develop CEN/CENELEC publications in this domain. JTC 13/WG 2 also covers aspects related primarily to an organisation’s security controls and services, emphasizing standards for information security and cybersecurity and its application to the security of information systems and their lifecycle. The topics covered include information security and cybersecurity related to: • Operations (for example readiness, continuity, incident management, event management, investigation) • Information and data lifecycle • Organizational and management aspects of services within an organisation • Technologies and architectures (for example cloud, network, virtualization, storage
Cybersecurity Management Systems
The WG considers national and international standards for adoption in the domain of management system standards including supporting control sets covering information and cyber security. Where not being developed by other SDO's, the WG may develop CEN/CENELEC publications in this domain. JTC 13/WG 2 also covers aspects related primarily to an organisation’s security controls and services, emphasizing standards for information security and cybersecurity and its application to the security of information systems and their lifecycle. The topics covered include information security and cybersecurity related to: • Operations (for example readiness, continuity, incident management, event management, investigation) • Information and data lifecycle • Organizational and management aspects of services within an organisation • Technologies and architectures (for example cloud, network, virtualization, storage
General Information
This Technical Specification (TS) provides a set of cybersecurity requirements for cloud services.
This TS is applicable to organizations providing cloud services and their subservice organizations
- Technical specification180 pagesEnglish languagesale 10% offe-Library read for1 day
This document provides a reference set of generic information security controls including implementation guidance. This document is designed to be used by organizations:
a) within the context of an information security management system (ISMS) based on ISO/IEC27001;
b) for implementing information security controls based on internationally recognized best practices;
c) for developing organization-specific information security management guidelines.
- Standard164 pagesEnglish languagesale 10% offe-Library read for1 day
- Standard – translation172 pagesSlovenian languagesale 10% offe-Library read for1 day
This document provides information security controls for the energy utility industry, based on ISO/IEC 27002:2022, for controlling and monitoring the production or generation, transmission, storage and distribution of electric power, gas, oil and heat, and for the control of associated supporting processes.
- Draft47 pagesEnglish languagesale 10% offe-Library read for1 day