ISO/IEC 27000: Information security management systems - Overview and vocabulary
ISO/IEC 27001: Information security management systems - Requirements
ISO/IEC 27002: Code of practice for information security management
ISO/IEC 27004: Information security management measurements
ISO/IEC 27005: Information security risk management (заместил ISO/IEC 13335)
ISO/IEC 27006: International accreditation guidelines for the accreditation of bodies operating certification / Registration of information security management systems
ISO/IEC 27010: Information security management for inter-sector communications (for critical infrastructure)
ISO/IEC 27013: Guidelines for integration implementation of ISO/IEC 20000-1 & ISO/IEC 27001
ISO/IEC 27014: Information security governance framework
ISO/IEC 27031: ICT readiness for business continuity
ISO/IEC 27032: Guidelines for CyberSecurity
ISO/IEC 27033: Network security (заместил ISO/IEC 18028)
ISO/IEC 27034: Application security
ISO/IEC 15408: Evaluation criteria for IT security (Common Criteria)
ISO/IEC 29147: Responsible vulnerability disclosure
ISO/IEC 24760: A framework for identity management
ISO/IEC 29146: A framework for access management
ISO/IEC 29101: A privacy reference architecture
BS 10012 Data protection - Specification for a personal information management system
NIST SP 800-122 Guide to Protecting the Confidentiality of Personally Identifiable Information
CWA 15499-1 Personal Data Protection Audit Framework (EU Directive EC 95/46) - Part I: Baseline Framework
CWA 15499-2 Personal Data Protection Audit Framework (EU Directive EC 95/46) - Part II: Checklists, questionnaires and templates for users of the framework
CWA 15262 Inventory of Data Protection Auditing Practices
CWA 15263 Analysis of Privacy Protection Technologies, Privacy- Enhancing Technologies (PET), Privacy Management Systems (PMS) and Identity Management systems (IMS), the Drivers thereof and the need for standardization
CWA 15292 Standard form contract to assist compliance with obligations imposed by article 17 of the Data Protection Directive 95/46/EC (and implementation guide)
CWA 16111:2010 Voluntary Technology Dialogue Framework (VTDF)
CWA 16112:2010 Self-assessment framework for managers
CWA 16113 Personal Data Protection Good Practices
Управление инцидентами
NIST Special Publication (SP) 800-61 Revision 2, Computer Security Incident Handling Guide
NIST SP 800-83, Guide to Malware Incident Prevention and Handling
NIST SP 800-86, Guide to Integrating Forensic Techniques into Incident Response
NIST SP 800-92, Guide to Computer Security Log Management
NIST SP 800-94, Guide to Intrusion Detection and Prevention Systems (IDPS)
ISO/IEC 27001: Information security management systems - Requirements
ISO/IEC 27002: Code of practice for information security management
ISO/IEC 27004: Information security management measurements
ISO/IEC 27005: Information security risk management (заместил ISO/IEC 13335)
ISO/IEC 27006: International accreditation guidelines for the accreditation of bodies operating certification / Registration of information security management systems
ISO/IEC 27010: Information security management for inter-sector communications (for critical infrastructure)
ISO/IEC 27013: Guidelines for integration implementation of ISO/IEC 20000-1 & ISO/IEC 27001
ISO/IEC 27014: Information security governance framework
ISO/IEC 27031: ICT readiness for business continuity
ISO/IEC 27032: Guidelines for CyberSecurity
ISO/IEC 27033: Network security (заместил ISO/IEC 18028)
ISO/IEC 27034: Application security
ISO/IEC 15408: Evaluation criteria for IT security (Common Criteria)
ISO/IEC 29147: Responsible vulnerability disclosure
ISO/IEC 24760: A framework for identity management
ISO/IEC 29146: A framework for access management
Защита персональных данных
ISO/IEC 29100: A privacy frameworkISO/IEC 29101: A privacy reference architecture
BS 10012 Data protection - Specification for a personal information management system
NIST SP 800-122 Guide to Protecting the Confidentiality of Personally Identifiable Information
CWA 15499-1 Personal Data Protection Audit Framework (EU Directive EC 95/46) - Part I: Baseline Framework
CWA 15499-2 Personal Data Protection Audit Framework (EU Directive EC 95/46) - Part II: Checklists, questionnaires and templates for users of the framework
CWA 15262 Inventory of Data Protection Auditing Practices
CWA 15263 Analysis of Privacy Protection Technologies, Privacy- Enhancing Technologies (PET), Privacy Management Systems (PMS) and Identity Management systems (IMS), the Drivers thereof and the need for standardization
CWA 15292 Standard form contract to assist compliance with obligations imposed by article 17 of the Data Protection Directive 95/46/EC (and implementation guide)
CWA 16111:2010 Voluntary Technology Dialogue Framework (VTDF)
CWA 16112:2010 Self-assessment framework for managers
CWA 16113 Personal Data Protection Good Practices
Управление инцидентами
NIST Special Publication (SP) 800-61 Revision 2, Computer Security Incident Handling Guide
NIST SP 800-83, Guide to Malware Incident Prevention and Handling
NIST SP 800-86, Guide to Integrating Forensic Techniques into Incident Response
NIST SP 800-92, Guide to Computer Security Log Management
NIST SP 800-94, Guide to Intrusion Detection and Prevention Systems (IDPS)
