IT °Å¹ö³Í½º, ÅëÁ¦, º¸¾È ±×¸®°í º¸Áõ ¾÷°èÀÇ ±Û·Î¹ú ¸®´õ
 
 
HOME > Ä¿¹Â´ÏƼ > IT º¸Áõ
  ISO 27000 ½Ã¸®Áî ¸ñ·Ï
  ±Û¾´ÀÌ : ½ÅÀÎö     ³¯Â¥ : 11-02-06 14:12     Á¶È¸ : 4953     Ãßõ : 7     Æ®·¢¹é ÁÖ¼Ò
Information technology: Information security management systems, Overview and vocabulary
Á¤º¸±â¼ú: Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ, °³¿ä ¹× ¿ë¾î
 
ISO27001
This is the specification for an information security management system (an ISMS) which replaced the old BS7799-2 standard
ÀÌ°ÍÀº ¿¹ÀüÀÇ BS7799-2 Ç¥ÁØÀ» ´ëüÇÑ Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ(ISMS)À» À§ÇÑ ¸í¼¼ÀÌ´Ù.

 

ISO27002
This is the 27000 series standard number of what was originally the ISO 17799 standard (which itself was formerly known as BS7799-1)..

ÀÌ°ÍÀº ¿¹Àü¿¡ BS7799-1·Î ¾Ë·ÁÁ³djT´ø ISO 17799¿¡ ´ëÇÑ 27000 ½Ã¸®Áî Ç¥ÁØ ¹øÈ£ÀÌ´Ù.

 

ISO27003
This will be the official number of a new standard intended to offer guidance for the implementation of an ISMS (IS Management System) . 

ÀÌ°ÍÀº Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ(ISMS)ÀÇ ±¸ÇöÀ» À§ÇÑ ¾È³»¼­¸¦ Á¦°øÇÏ·Á´Â »õ·Î¿î Ç¥ÁØ ¹øÈ£°¡ µÉ °ÍÀÌ´Ù.

 

ISO27004
This standard covers information security system management measurement and metrics, including suggested ISO27002 aligned controls.

ÀÌ Ç¥ÁØÀº ISO27002¿Í ¿¬°èµÈ ÅëÁ¦¸¦ Æ÷ÇÔÇÑ Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ ÃøÁ¤¹æ¹ý ¹× ÃøÁ¤±âÁØÀ» ´Ù·ç°í ÀÖ´Ù.

 

ISO27005
This is the methodology independent ISO standard for information security risk management.

ÀÌ°ÍÀº Á¤º¸ º¸¾È À§Çè °ü¸®¸¦ À§ÇÑ ISO Ç¥ÁØ°ú µ¶¸³µÈ ¹æ¹ý·ÐÀÌ´Ù.

 

ISO27006
This standard provides guidelines for the accreditation of organizations offering ISMS certification.

ÀÌ Ç¥ÁØÀº ISMS ÀÎÁõÀ» Á¦°øÇÏ´Â Á¶Á÷ÀÇ Àΰ¡¸¦ À§ÇÑ ÁöħÀ» Á¦°øÇÑ´Ù.

 

ISO27007

Guidelines for Information Security Management Systems Auditing

Á¤º¸ º¸¾È °ü¸® ½Ã½ºÅÛ °¨»ç¸¦ À§ÇÑ Áöħ


ISO27008

Guidelines for ISM auditing with respect to security controls (approved April 2008)

º¸¾È ÅëÁ¦¿¡ °üÇÏ¿© Á¤º¸º¸¾È°ü¸® °¨»ç¸¦ À§ÇÑ Áöħ


ISO27011

Information technology: Information security management guidelines for telecommunications

Á¤º¸ ±â¼ú: Åë½ÅÀ» À§ÇÑ Á¤º¸ º¸¾È °ü¸® Áöħ


ISO27033

Network Security

³×Æ®¿öÅ© º¸¾È 


ISO27799

Health Informatics: Information security management in health using ISO/IEC 17799

°Ç°­ Á¤º¸ °úÇÐ: ISO/IEC 17799¸¦ ÀÌ¿ëÇÑ °Ç°­(°ú °ü·ÃµÈ ±â°ü)¿¡ °üÇÑ Á¤º¸ º¸¾È °ü¸®

 

UNCONFIRMED / NOT YET SCHEDULED

È®Á¤µÇÁö ¾Ê°Å³ª ¾ÆÁ÷ ÀÏÁ¤ÀÌ ÀâÇôÀÖÁö ¾ÊÀº

 
ISO27010 ISM Guidelines for Sector-Sector Working and Communications (it is suggested that this will comprise a number of documents)

ISO27013 Guideline on the Integrated Implementation of ISO/IEC 20000-1 and ISO27001

ISO27014 Information Security Governance Framework

ISO27015 Information Security Management Guidelines for the Finance And Insurance Sectors

ISO27031 ICT Readiness for Business Continuity(essentially the ICT continuity component within business continuity management))

ISO27032 Guideline for Cyber Security (essentially, 'being a good neighbor' on the Internet)

ISO27034 Guidelines for application security

ISO27035 Security Incident Management

ISO27036 Guidelines for Security of Outsourcing

ISO27037 Guidelines for Identification, Collection and/or Acquisition and Preservation of Digital Evidence

ISO27051 Telecommunications (ITU-T)

SPECULATION - INDUSTRY SPECIFIC STANDARDS:

¾÷Á¾ Ưȭ Ç¥ÁØ

 

ISO27012 Finance (ref ISO TC 68) À繫
ISO27013 Manufacturing Á¦Á¶

IRCA (Spain) contradicts this by reporting the following:
ISO27012 Automotive Industry ÀÚµ¿ÀÚ ¾÷°è
ISO27013 Lotteries. º¹±Ç


ÀÇ°ß¾²±â

¹øÈ£ Á¦¸ñ ±Û¾´ÀÌ ³¯Â¥ Á¶È¸ Ãßõ
8 ISO 27000 ½Ã¸®Áî ¸ñ·Ï ½ÅÀÎö 11-02-06 4954 7
7 IT °ü·Ã ISO Ç¥ÁØ ¸ñ·Ï (1) ½ÅÀÎö 09-03-23 16048 59
6 COBIT Series(3) - IT ÇÁ·Î¼¼½º °³¼±°ú ¼º¼÷µµ ½ÅÀÎö 08-06-04 4097 12
5 ITILÀÇ µÎ ¾ó±¼ ½ÅÀÎö 08-04-22 6235 14
4 COBIT Series(2) - ÅëÁ¦ ¸ñÀû ¹× ½Ç¹« (control objectives and practices) ½ÅÀÎö 08-02-11 3902 9
3 COBIT Series(1) - COBITÀÇ Á¤½Å ½ÅÀÎö 08-01-05 4228 9
2 [»ç¼³] ¡°CMMI ÀÎÁõ¸¸ÀÌ ´É»ç°¡ ¾Æ´Ï´Ù¡± ¸¦ ÀÐ°í¼­, ½ÅÀÎö 07-04-01 5329 17
1 IT Assurance series (1) – ÅëÁ¦ÀÇ ´Ü°èÀû ÀÌÇà (cascading of control) ½ÅÀÎö 07-03-24 3943 16