BS 7799-2:1998

Superseded

View Superseded by

Information security management Specification for information security management systems

Available format(s)

Hardcopy , PDF

Superseded date

05-15-1999

Language(s)

English

Published date

02-15-1998

Publisher

British Standards Institution

Committees responsible
Foreword
Section 1. General
1.1 Scope
1.2 Definitions
Section 2. Information security management system
requirements
2.1 General
2.2 Establishing a management framework
2.3 Implementation
2.4 Documentation
2.5 Document control
2.6 Records
Section 3. Detailed controls
3.1 Information security policy
3.2 Security organization
3.3 Assets classification and control
3.4 Personnel security
3.5 Physical and environmental security
3.6 Computer and network management
3.7 System access control
3.8 Systems development and maintenance
3.9 Business continuity planning
3.10 Compliance
Figure
1 Establishing a management framework
List of references

This specification is the basis for a formal certification scheme to assess an organization\'s conformity to those elements of best practice identified in BS 7799:Part 1 \'Code of practice for information security management systems\' that are relevant to the particular organization or system.

Committee	IST/33
DevelopmentNote	DRAFT FOR COMMENT 97/600130 DC
DocumentType	Standard
Pages	14
PublisherName	British Standards Institution
Status	Superseded
SupersededBy	BS 7799-2:1999
Supersedes	97/600130 DC : APR 97

PD CR 13694:1999	Health informatics. Safety and security related software quality standards for healthcare (SSQS)
BIP 0139 : 2013	AN INTRODUCTION TO ISO/IEC 27001:2013