Online Store

Secure Ordering

You can be confident that your order is safe and secure. We use SSL encryption on all our transactions to ensure your safety.

Shipping

If you have any questions or comments about the checkout process please contact our Checkout Hotline on +44 (0) 845 290 3172

Verified by VISA - MasterCard SecureCode

ISO/IEC 27004:2009 (Download)

Previous

Our Price:
£100.00 GBP
($196.00 USD)
(€133.00 EUR)
Qty
  Each
 

 

 

 

 

 

 

ISO/IEC 27004:2009 - THE International Standard for metrics concerning an information security management system (ISMS) - order today!

This standard provides guidance on the development and use of measures and measurement in order to assess the effectiveness of an ISMS. It also provides guidance on the measures and measurement for controls or groups of controls.

All of the advice and guidance within ISO/IEC 27004:2009 is designed to be used within the scope of ISO/IEC 27001.

The metrics outlined in the standard cover policy, information security risk management, control objectives, controls, processes and procedures. Helping you to determine whether any of the ISMS processes or controls need to be changed or improved.

This International Standard gives recommendations concerning the following activities as a basis for an organisation to fulfil measurement requirements specified in ISO/IEC 27001:

  • Developing measures (i.e. base measures, derived measures and indicators),
  • Implementing and operating an information security measurement programme,
  • Collecting and analysing data,
  • Developing measurement results,
  • Communicating developed measurement results to the relevant stakeholders,
  • Using measurement results as contributing factors to ISMS-related decisions,
  • Using measurement results to identify needs for improving the implemented ISMS, including its scope, policies, objectives, controls, processes and procedures; and
  • Facilitating continual improvement of the information security measurement programme.

ISO/IEC 27004:2009 is applicable to all types and sizes of organisation.

Key Features and Benefits:

  • Provides guidance on the development, implementation use of metrics to measure the effectiveness of an ISO 27001-compliant ISMS, controls or groups of controls. Helping you to quantify the payback to your organisation of implementing an ISMS.
  • Covers not just the development, implementation and use of metrics, but also the communication of the results. Helping you to ensure management buy-in for future projects.
  • The use of this standard provides opportunities to identify areas in need of improvement, facilitating continual improvement. Thus leading more secure information, cost savings and increases in efficiency.


Publisher: BSI
Format: Electronic Download PDF (1.44MB)
Licensing Terms: Governed by BSI's Copyright Terms and Conditions.
Availability: Immediate Download


Order this standard to the measurement of the effectiveness of an ISMS today - order for immediate download now!