We noticed you’re not on the correct regional site. Switch to our AMERICAS site for the best experience.
  • ISO/IEC 27002:2013

    Withdrawn A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
    Add to Watchlist
    This Standard has been added successfully to your Watchlist.
    Please visit My Watchlist to see all standards that you are watching.
    Please log in or to add this standard to your Watchlist.
    We could not add this standard to your Watchlist.
    Please retry or contact support for assistance.
    You need to be logged in to add this standard to your Watchlist.
    Please log in now or create an account to add.
    You already added this Product in the Watchlist.

    Information technology Security techniques Code of practice for information security controls

    Available format(s):  Hardcopy, PDF, PDF 3 Users, PDF 5 Users, PDF 9 Users

    Withdrawn date:  15-02-2022

    Language(s): 

    Published date:  25-09-2013

    Publisher:  International Organization for Standardization

    Add to Watchlist

    Add To Cart

    Abstract - (Show below) - (Hide below)

    ISO/IEC 27002:2013 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).

    It is designed to be used by organizations that intend to:

    1. select controls within the process of implementing an Information Security Management System based on ISO/IEC 27001;
    2. implement commonly accepted information security controls;
    3. develop their own information security management guidelines.

    General Product Information - (Show below) - (Hide below)

    Committee ISO/IEC JTC 1/SC 27
    Development Note Supersedes ISO/IEC 17799. COR 1 2007 to ISO/IEC 17799 issued on 01-07-2007, Redesignates ISO/IEC 17799 as ISO/IEC 27002. (07/2007)
    Document Type Standard
    Publisher International Organization for Standardization
    Status Withdrawn
    Superseded By
    Supersedes

    International Equivalents – Equivalent Standard(s) & Relationship - (Show below) - (Hide below)

    Standards Referenced By This Book - (Show below) - (Hide below)

    AAMI IEC TIR 80001-2-2 : 2012 APPLICATION OF RISK MANAGEMENT FOR IT-NETWORKS INCORPORATING MEDICAL DEVICES - PART 2-2: GUIDANCE FOR THE DISCLOSURE AND COMMUNICATION OF MEDICAL DEVICE SECURITY NEEDS, RISKS AND CONTROLS
    CSA ISO/IEC 27009 : 2018 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - SECTOR-SPECIFIC APPLICATION OF ISO/IEC 27001 - REQUIREMENTS
    TR 101 564 : 1.1.1 ELECTRONIC SIGNATURES AND INFRASTRUCTURES (ESI); GUIDANCE ON ETSI TS 102 042 FOR ISSUING EXTENDED VALIDATION CERTIFICATES FOR AUDITORS AND CSPS
    BS IEC 62443-3-3 : 2013 INDUSTRIAL COMMUNICATION NETWORKS - NETWORK AND SYSTEM SECURITY - PART 3-3: SYSTEM SECURITY REQUIREMENTS AND SECURITY LEVELS
    DIN ISO/IEC 27001 : 2017 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEMS - REQUIREMENTS (ISO/IEC 27001:2013 + COR. 1:2014)
    BS ISO/IEC 27014:2013 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GOVERNANCE OF INFORMATION SECURITY
    ISO/IEC 27003:2017 Information technology Security techniques Information security management systems Guidance
    CSA ISO/IEC 27007 : 2013 : R2017 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR INFORMATION SECURITY MANAGEMENT SYSTEMS AUDITING
    CSA ISO 10008 : 2015 QUALITY MANAGEMENT - CUSTOMER SATISFACTION - GUIDELINES FOR BUSINESS-TO-CONSUMER ELECTRONIC COMMERCE TRANSACTIONS
    INCITS/ISO/IEC 24762 : 2009(R2014) INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR INFORMATION AND COMMUNICATIONS TECHNOLOGY DISASTER RECOVERY SERVICES
    12/30209299 DC : 0 BS ISO 10008 - QUALITY MANAGEMENT - CUSTOMER SATISFACTION - GUIDELINES FOR BUSINESS-TO-CONSUMER ELECTRONIC COMMERCE TRANSACTIONS
    INCITS/ISO/IEC 27037 : 2014 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR IDENTIFICATION, COLLECTION, ACQUISITION AND PRESERVATION OF DIGITAL EVIDENCE
    DIN EN ISO/IEC 27001 E : 2017 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEMS - REQUIREMENTS (ISO/IEC 27001:2013 INCLUDING COR 1:2014 AND COR 2:2015)
    BS ISO/IEC 27036-2:2014 Information technology. Security techniques. Information security for supplier relationships Requirements
    TR 103 305 : 1.1.1 CYBER; CRITICAL SECURITY CONTROLS FOR EFFECTIVE CYBER DEFENCE
    10/30184538 DC : 0 BS ISO/IEC 20000-2 - INFORMATION TECHNOLOGY - SERVICE MANAGEMENT - PART 2: GUIDANCE ON THE APPLICATION OF SERVICE MANAGEMENT SYSTEMS
    18/30348902 DC : 0 BS ISO/IEC 21878 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - SECURITY GUIDELINES FOR DESIGN AND IMPLEMENTATION OF VIRTUALIZED SERVERS
    BS ISO/IEC 15408-1 : 2009 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - EVALUATION CRITERIA FOR IT SECURITY - PART 1: INTRODUCTION AND GENERAL MODEL
    07/30117272 DC : 0 BS ISO/IEC 27005 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY RISK MANAGEMENT
    BS ISO/IEC 29134:2017 Information technology. Security techniques. Guidelines for privacy impact assessment
    I.S. EN ISO 11073-00103:2017 HEALTH INFORMATICS - PERSONAL HEALTH DEVICE COMMUNICATION - PART 00103: OVERVIEW (ISO/IEEE 11073-00103:2015)
    BS ISO/IEC 19770-1:2017 INFORMATION TECHNOLOGY - IT ASSET MANAGEMENT - PART 1: IT ASSET MANAGEMENT SYSTEMS - REQUIREMENTS
    12/30249606 DC : 0 BS EN 62645 ED 1.0 - NUCLEAR POWER PLANTS - INSTRUMENTATION AND CONTROL SYSTEMS - REQUIREMENT S FOR SECURITY PROGRAMMES FOR COMPUTER-BASED SYSTEMS
    BS ISO/IEC 27036-3 : 2013 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY FOR SUPPLIER RELATIONSHIPS - PART 3: GUIDELINES FOR INFORMATION AND COMMUNICATION TECHNOLOGY SUPPLY CHAIN SECURITY
    PD ISO/IEC TR 15443-3:2007 Information technology. Security techniques. A framework for IT security assurance Analysis of assurance methods
    CEI EN 61069-5 : 1996 INDUSTRIAL-PROCESS MEASUREMENT, CONTROL AND AUTOMATION - EVALUATION OF SYSTEM PROPERTIES FOR THE PURPOSE OF SYSTEM ASSESSMENT - PART 5: ASSESSMENT OF SYSTEM DEPENDABILITY
    BS ISO/IEC 27018:2014 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - CODE OF PRACTICE FOR PROTECTION OF PERSONALLY IDENTIFIABLE INFORMATION (PII) IN PUBLIC CLOUDS ACTING AS PII PROCESSORS
    UNI CEI ISO/IEC TR 20000-3 : 2010 INFORMATION TECHNOLOGY - SERVICE MANAGEMENT - PART 3: GUIDANCE ON SCOPE DEFINITION AND APPLICABILITY OF ISO/IEC 20000-1
    BS ISO/IEC 29151:2017 Information technology. Security techniques. Code of practice for personally identifiable information protection
    PD IEC/TR 80001-2-3:2012 (published 2012-07) Application of risk management for IT-networks incorporating medical devices Guidance for wireless networks
    10/30162769 DC : DRAFT NOV 2010 BS ISO/IEC 27007 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR INFORMATION SECURITY MANAGEMENT SYSTEMS AUDITING
    12/30250178 DC : 0 BS ISO/IEC 27036-3 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY FOR SUPPLIER RELATIONSHIPS - PART 3: GUIDELINES FOR ICT SUPPLY CHAIN SECURITY
    DIN EN ISO 22313:2016-05 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE (ISO 22313:2012)
    BS PAS 7000(2014) : 2014 SUPPLY CHAIN RISK MANAGEMENT - SUPPLIER PREQUALIFICATION
    BS ISO/IEC 27035 : 2011 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY INCIDENT MANAGEMENT
    17/30281253 DC : 0 BS ISO 21188 - PUBLIC KEY INFRASTRUCTURE FOR FINANCIAL SERVICES - PRACTICES AND POLICY FRAMEWORK
    16/30331802 DC : 0 BS EN 62887 ED 1.0 - NUCLEAR POWER PLANTS - INSTRUMENTATION SYSTEMS IMPORTANT TO SAFETY - PRESSURE TRANSMITTERS: CHARACTERISTICS AND TEST METHODS
    ISO/IEC TR 27103:2018 Information technology — Security techniques — Cybersecurity and ISO and IEC Standards
    SAE AS 9115 : 2017 QUALITY MANAGEMENT SYSTEMS - REQUIREMENTS FOR AVIATION, SPACE, AND DEFENSE ORGANIZATIONS - DELIVERABLE SOFTWARE (SUPPLEMENT TO 9100:2016)
    15/30279952 DC : 0 BS ISO/IEC 30124 - CODE OF PRACTICE FOR THE IMPLEMENTATION OF A BIOMETRIC SYSTEM
    16/30286013 DC : 0 BS ISO/IEC 27003 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEM - GUIDANCE
    BS ISO/IEEE 11073-00103 : 2015 HEALTH INFORMATICS - PERSONAL HEALTH DEVICE COMMUNICATION - PART 00103: OVERVIEW
    CSA ISO/IEC TR 24729-4:14 (R2019) Information technology - Radio frequency identification for item management - Implementation guidelines - Part 4: Tag data security (Adopted ISO/IEC TR 24729-4:2009, first edition, 2009-03-15)
    PD CEN/TS 16850:2015 Societal and Citizen Security. Guidance for managing security in healthcare facilities
    BS IEC 62855 : 2016 NUCLEAR POWER PLANTS - ELECTRICAL POWER SYSTEMS - ELECTRICAL POWER SYSTEMS ANALYSIS
    ISO/IEC TR 24714-1:2008 Information technology Biometrics Jurisdictional and societal considerations for commercial applications Part 1: General guidance
    ISO/IEC TR 27008:2011 Information technology Security techniques Guidelines for auditors on information security controls
    PD IEC/TR 80001-2-8:2016 (published 2016-05) Application of risk management for IT-networks incorporating medical devices Application guidance. Guidance on standards for establishing the security capabilities identified in IEC TR 80001-2-2
    CAN/CSA-ISO/IEC 27010:16 Information technology - Security techniques - Information security management for inter-sector and inter-organizational communications (Adopted ISO/IEC 27010:2015, second edition, 2015-11-15)
    ISO 17090-1:2013 Health informatics Public key infrastructure Part 1: Overview of digital certificate services
    BS ISO/IEC 27017 : 2015 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - CODE OF PRACTICE FOR INFORMATION SECURITY CONTROLS BASED ON ISO/IEC 27002 FOR CLOUD SERVICES
    INCITS/ISO/IEC 27010 : 2017 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT FOR INTER-SECTOR AND INTER-ORGANIZATIONAL COMMUNICATIONS
    ISO/IEC TR 38505-2:2018 Information technology Governance of IT Governance of data Part 2: Implications of ISO/IEC 38505-1 for data management
    17/30342692 DC : 0 BS ISO/IEC 27007 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR INFORMATION SECURITY MANAGEMENT SYSTEMS AUDITING
    BS EN ISO 9004:2018 QUALITY MANAGEMENT - QUALITY OF AN ORGANIZATION - GUIDANCE TO ACHIEVE SUSTAINED SUCCESS (ISO 9004:2018)
    TS 102 573 : 2.1.1 ELECTRONIC SIGNATURES AND INFRASTRUCTURES (ESI); POLICY REQUIREMENTS FOR TRUST SERVICE PROVIDERS SIGNING AND/OR STORING DATA OBJECTS
    BS ISO/IEC 15944-8:2012 Information technology. Business Operational View Identification of privacy protection requirements as external constraints on business transactions
    DIN EN ISO 22313 E : 2016 SOCIETAL SECURITY - BUSINESS CONTINUITY MANAGEMENT SYSTEMS - GUIDANCE (ISO 22313:2012)
    CSA INFORMATION SECURITY PACKAGE : 2018 CONSISTS OF CAN/CSA-ISO/IEC 27000:18 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEMS - OVERVIEW AND VOCABULARY; CAN/CSA-ISO/IEC 27001:14, INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEMS - REQUIREMENTS; CAN/CSA-ISO/IEC 27002:15 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - CODE OF PRACTICE FOR INFORMATION
    BS ISO 10008:2013 Quality management. Customer satisfaction. Guidelines for business-to-consumer electronic commerce transactions
    12/30192109 DC : 0 BS ISO/IEC 27033-5 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - IT NETWORK SECURITY - PART 5: SECURING COMMUNICATIONS ACROSS NETWORKS USING VIRTUAL PRIVATE NETWORK (VPNS)
    BS PD ISO/IEC TR 24714-1 : 2008 INFORMATION TECHNOLOGY - BIOMETRICS - JURISDICTIONAL AND SOCIETAL CONSIDERATIONS FOR COMMERCIAL APPLICATIONS - PART 1: GENERAL GUIDANCE
    BS ISO/IEC 27039 : 2015 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - SELECTION, DEPLOYMENT AND OPERATIONS OF INTRUSION DETECTION SYSTEMS (IDPS)
    14/30304350 DC : 0 BS EN ISO 27799 - HEALTH INFORMATICS - INFORMATION SECURITY MANAGEMENT IN HEALTH USING ISO/IEC 27002
    11/30207799 DC : 0 BS ISO/IEC 27037 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR IDENTIFICATION, COLLECTION, ACQUISITION AND PRESERVATION OF DIGITAL EVIDENCE
    BS ISO/IEC 20000-2:2012 INFORMATION TECHNOLOGY - SERVICE MANAGEMENT - PART 2: GUIDANCE ON THE APPLICATION OF SERVICE MANAGEMENT SYSTEMS
    BIP 0139 : 2013 AN INTRODUCTION TO ISO/IEC 27001:2013
    14/30278505 DC : 0 BS ISO/IEC 27033-1 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - NETWORK SECURITY PART 1: OVERVIEW AND CONCEPTS
    15/30285708 DC : 0 BS EN ISO 25237 - HEALTH INFORMATICS - PSEUDONYMISATION
    UNE-ISO/IEC 20000-3:2015 Information technology. Service management. Part 3: Guidance on scope definition and applicability of ISO/IEC 20000-1
    BIS IS/ISO/IEC 27005 : 2008 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY RISK MANAGEMENT
    16/30313398 DC : 0 BS ISO/IEC 15944-12 - INFORMATION TECHNOLOGY - BUSINESS OPERATIONAL VIEW - PART 12: PRIVACY PROTECTION REQUIREMENTS ON INFORMATION LIFE CYCLE MANAGEMENT (ILCM) AND EDI OF PERSONAL INFORMATION
    17/30347919 DC : 0 BS ISO 10005 - QUALITY MANAGEMENT SYSTEMS - GUIDELINES FOR QUALITY PLANS
    15/30268877 DC : 0 BS ISO/IEC 27035-2 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY INCIDENT MANAGEMENT - PART 2: GUIDELINES TO PLAN AND PREPARE FOR INCIDENT RESPONSE
    BS PD CEN/TS 15480-4 : 2012 IDENTIFICATION CARD SYSTEMS - EUROPEAN CITIZEN CARD - PART 4: RECOMMENDATIONS FOR EUROPEAN CITIZEN CARD ISSUANCE, OPERATION AND USE
    11/30168516 DC : 0 BS ISO/IEC 27032 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR CYBERSECURITY
    15/30299331 DC : 0 BS ISO/IEC 27011 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - CODE OF PRACTICE FOR INFORMATION SECURITY CONTROLS BASED ON ISO/IEC 27002 FOR TELECOMMUNICATIONS ORGANIZATIONS
    15/30285726 DC : 0 BS ISO/IEC 27009 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - SECTOR-SPECIFIC APPLICATION OF ISO/IEC 27001 - REQUIREMENTS
    12/30269414 DC : 0 BS EN 16495 - AIR TRAFFIC MANAGEMENT - INFORMATION SECURITY FOR ORGANISATIONS SUPPORTING CIVIL AVIATION OPERATIONS
    DIN EN ISO/IEC 27001:2017-06 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEMS - REQUIREMENTS (ISO/IEC 27001:2013 INCLUDING COR 1:2014 AND COR 2:2015)
    15/30319488 DC : 0 BS ISO/IEC 27000 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEMS - OVERVIEW AND VOCABULARY
    CSA ISO/IEC 27000 : 2018 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEMS - OVERVIEW AND VOCABULARY
    BIP 0064 : 2007 INFORMATION SECURITY INCIDENT MANAGEMENT - A METHODOLOGY
    BS ISO/IEC 19086-1 : 2016 INFORMATION TECHNOLOGY - CLOUD COMPUTING - SERVICE LEVEL AGREEMENT (SLA) FRAMEWORK - PART 1: OVERVIEW AND CONCEPTS
    CAN/CSA-ISO/IEC 17789:16 Information technology Cloud computing Reference architecture (Adopted ISO/IEC 17789:2014, first edition, 2014-10-15)
    BS ISO/IEC 27036-1:2014 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY FOR SUPPLIER RELATIONSHIPS - PART 1: OVERVIEW AND CONCEPTS
    BS EN 16747 : 2015 MARITIME AND PORT SECURITY SERVICES
    CSA ISO/IEC 24762 : 2008 : R2013 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR INFORMATION AND COMMUNICATIONS TECHNOLOGY DISASTER RECOVERY SERVICES
    BS ISO/IEC 27007:2017 Information technology. Security techniques. Guidelines for information security management systems auditing
    ISO/IEC 27035-1:2016 Information technology Security techniques Information security incident management Part 1: Principles of incident management
    DIN ISO/IEC 17789 E : 2017 INFORMATION TECHNOLOGY - CLOUD COMPUTING - REFERENCE ARCHITECTURE (ISO/IEC 17789:2014)
    09/30184534 DC : DRAFT JAN 2009 BS ISO/IEC 20000-1 - INFORMATION TECHNOLOGY - SERVICE MANAGEMENT - PART 1: SERVICE MANAGEMENT SYSTEM REQUIREMENTS
    PD IEC/TR 80001-2-2:2012 (published 2012-07) Application of risk management for IT-networks incorporating medical devices Guidance for the disclosure and communication of medical device security needs, risks and controls
    BS ISO/IEC 15026-1 : 2013 SYSTEMS AND SOFTWARE ENGINEERING - SYSTEMS AND SOFTWARE ASSURANCE - PART 1: CONCEPTS AND VOCABULARY
    PD IEC/TR 80001-2-1:2012 (published 2012-07) Application of risk management for IT-networks incorporating medical devices Step-by-step risk management of medical IT-networks. Practical applications and examples
    S.R. CEN/TS 15480-4:2012 IDENTIFICATION CARD SYSTEMS - EUROPEAN CITIZEN CARD - PART 4: RECOMMENDATIONS FOR EUROPEAN CITIZEN CARD ISSUANCE, OPERATION AND USE
    BIP 0071 : 2014 GUIDELINES ON REQUIREMENTS AND PREPARATION FOR ISMS CERTIFICATION BASED ON ISO/IEC 27001
    BS ISO/IEC 27033-4 : 2014 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - NETWORK SECURITY - PART 4: SECURING COMMUNICATIONS BETWEEN NETWORKS USING SECURITY GATEWAYS
    BS ISO/IEC 27009:2016 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - SECTOR-SPECIFIC APPLICATION OF ISO/IEC 27001 - REQUIREMENTS
    ISO/IEC TR 19791:2010 Information technology Security techniques Security assessment of operational systems
    11/30204593 DC : DRAFT MAY 2011 BS ISO/IEC 27010 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT FOR INTER-SECTOR AND INTER-ORGANIZATIONAL COMMUNICATIONS
    BS ISO/IEC 27010:2015 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT FOR INTER-SECTOR AND INTER-ORGANIZATIONAL COMMUNICATIONS
    BS ISO 17090-1:2013 HEALTH INFORMATICS - PUBLIC KEY INFRASTRUCTURE - PART 1: OVERVIEW OF DIGITAL CERTIFICATE SERVICES
    BS PD IEC TR 62351-10 : 2012 POWER SYSTEMS MANAGEMENT AND ASSOCIATED INFORMATION EXCHANGE - DATA AND COMMUNICATIONS SECURITY - PART 10: SECURITY ARCHITECTURE GUIDELINES
    BS ISO/IEC 24762 : 2008 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR INFORMATION AND COMMUNICATIONS TECHNOLOGY DISASTER RECOVERY SERVICES
    BS PD CEN/TR 16742 : 2014 INTELLIGENT TRANSPORT SYSTEMS - PRIVACY ASPECTS IN ITS STANDARDS AND SYSTEMS IN EUROPE
    OLF 104 : 2016 INFORMATION SECURITY BASELINE REQUIREMENTS FOR PROCESS CONTROL, SAFETY AND SUPPORT ICT SYSTEMS
    ISO/IEC 38505-1:2017 Information technology Governance of IT Governance of data Part 1: Application of ISO/IEC 38500 to the governance of data
    ISO 17090-3:2008 Health informatics Public key infrastructure Part 3: Policy management of certification authority
    CSA ISO/IEC 27007 : 2013 INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - GUIDELINES FOR INFORMATION SECURITY MANAGEMENT SYSTEMS AUDITING
    NASA CCSDS 350.7-G : ISSUE 1 SECURITY GUIDE FOR MISSION PLANNERS
    ISO/IEC 27007:2017 Information technology Security techniques Guidelines for information security management systems auditing
    GS ISI 001-1 : 1.1.2 INFORMATION SECURITY INDICATORS (ISI); INDICATORS (INC); PART 1: A FULL SET OF OPERATIONAL INDICATORS FOR ORGANIZATIONS TO USE TO BENCHMARK THEIR SECURITY POSTURE
    GS ISI 004 : 1.1.1 INFORMATION SECURITY INDICATORS (ISI); GUIDELINES FOR EVENT DETECTION IMPLEMENTATION
    12/30192064 DC : 0 BS ISO/IEC 27001 - INFORMATION TECHNOLOGY - SECURITY TECHNIQUES - INFORMATION SECURITY MANAGEMENT SYSTEM - REQUIREMENTS
    BS ISO 21188:2006 PUBLIC KEY INFRASTRUCTURE FOR FINANCIAL SERVICES - PRACTICES AND POLICY FRAMEWORK
    ISO/IEC 29182-4:2013 Information technology Sensor networks: Sensor Network Reference Architecture (SNRA) Part 4: Entity models
    PD IEC/TR 63084:2017 (published 2017-09) Nuclear power plants. Instrumentation and control important to safety. Platform qualification for systems important to safety
    BS PD ISO/TR 11633-1 : 2009 HEALTH INFORMATICS - INFORMATION SECURITY MANAGEMENT FOR REMOTE MAINTENANCE OF MEDICAL DEVICES AND MEDICAL INFORMATION SYSTEMS - PART 1: REQUIREMENTS AND RISK ANALYSIS
    DIN EN 16747 E : 2015 MARITIME AND PORT SECURITY SERVICES