• There are no items in your cart
We noticed you’re not on the correct regional site. Switch to our AMERICAS site for the best experience.
Dismiss alert

CSA ISO/IEC 21827 : 2009

Superseded
Superseded

A superseded Standard is one, which is fully replaced by another Standard, which is a new edition of the same Standard.

View Superseded by
superseded

A superseded Standard is one, which is fully replaced by another Standard, which is a new edition of the same Standard.

INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - SYSTEMS SECURITY ENGINEERING - CAPABILITY MATURITY MODEL (SSE-CMM)
Available format(s)

Hardcopy , PDF

Superseded date

07-08-2021

Language(s)

English

Published date

01-01-2014

Foreword
0 Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Background
5 Structure of the Document
6 Model Architecture
7 Security Base Practices
Annex A (normative) - Generic Practices
Annex B (normative) - Project and Organizational Base Practices
Annex C (informative) - Capability Maturity Model Concepts
Annex D (informative) - Generic Practices
Bibliography

Defines the Systems Security Engineering - Capability Maturity Model (SSE-CMM).

DocumentType
Standard
Pages
164
ProductNote
Reconfirmed EN
PublisherName
Canadian Standards Association
Status
Superseded
SupersededBy
Supersedes

Standards Relationship
ISO/IEC 21827:2008 Identical

ISO/IEC TR 15443-1:2012 Information technology Security techniques Security assurance framework Part 1: Introduction and concepts
ISO/IEC TR 14516:2002 Information technology Security techniques Guidelines for the use and management of Trusted Third Party services
ISO/IEC 15504-4:2004 Information technology Process assessment Part 4: Guidance on use for process improvement and process capability determination
ISO/IEC 27004:2016 Information technology — Security techniques — Information security management — Monitoring, measurement, analysis and evaluation
ISO/IEC 15504-2:2003 Information technology Process assessment Part 2: Performing an assessment
ISO 7498-2:1989 Information processing systems Open Systems Interconnection Basic Reference Model Part 2: Security Architecture
ISO/IEC 15288:2008 Systems and software engineering System life cycle processes
ISO/IEC Guide 73:2002 Risk management Vocabulary Guidelines for use in standards
ISO/IEC 12207:2008 Systems and software engineering Software life cycle processes
ISO/IEC 17799:2005 Information technology Security techniques Code of practice for information security management
ISO 9001:2015 Quality management systems — Requirements
ISO/IEC Guide 2:2004 Standardization and related activities General vocabulary
ISO/IEC 15504-1:2004 Information technology Process assessment Part 1: Concepts and vocabulary
ISO/IEC 11770-1:2010 Information technology Security techniques Key management Part 1: Framework
ISO 9000-3:1997 Quality management and quality assurance standards Part 3: Guidelines for the application of ISO 9001:1994 to the development, supply, installation and maintenance of computer software

View more information

Access your standards online with a subscription

Features

  • Simple online access to standards, technical information and regulations.

  • Critical updates of standards and customisable alerts and notifications.

  • Multi-user online standards collection: secure, flexible and cost effective.