Cart (0)
  • No items in cart.
Total
$0
There is a technical issue about last added item. You can click "Report to us" button to let us know and we resolve the issue and return back to you or you can continue without last item via click to continue button.
Home
Content
eLibrary
Filters:
EDITION
to
PUBLISHER
AABC
(1)
AAMI
(353)
ACI
(641)
AECDAILY
(599)
AISC
(58)
ASA
(290)
ASCE
(1042)
ASHRAE
(715)
ASME
(2249)
ASSE
(117)
ASTM
(97542)
AWC
(58)
AWWA
(613)
BHMA
(132)
BICSI
(33)
BIFMA
(28)
BOMA
(20)
BSI
(99791)
CRSI
(18)
IAHSS
(1)
IAPMO
(396)
ICC
(328)
IEEE
(7369)
IES
(252)
ISEA
(21)
ISO
(24907)
Joint Commission
(191)
Joint Commission Int.
(1)
NEMA
(849)
NETA
(7)
NFPA
(1707)
TCNA
(23)
TMS
(19)
USGBC
(28)
WILEY
(4)
 
AR
(6)
AZ
(7)
CA
(127)
CO
(1)
CT
(3)
FL
(58)
ID
(5)
IL
(5)
IN
(1)
KY
(1)
LA
(2)
MI
(28)
MN
(27)
NC
(36)
NJ
(13)
NY
(71)
OH
(24)
OR
(25)
PA
(7)
RI
(8)
SC
(20)
SD
(1)
TX
(3)
VA
(50)
VT
(6)
WA
(34)
CONTENT TYPE
 Act
 Admin Code
 Announcements
 Bill
 Book
 CADD File
 CAN
 CEU
 Charter
 Checklist
 City Code
 Code
 Commentary
 Comprehensive Plan
 Conference Paper
 County Code
 Course
 DHS Documents
 Document
 Errata
 Executive Regulation
 Federal Guideline
 Firm Content
 Guideline
 Handbook
 Interpretation
 Journal
 Land Use and Development
 Law
 Legislative Rule
 Local Amendment
 Local Code
 Local Document
 Local Regulation
 Local Standards
 Manual
 Model Code
 Model Standard
 Notice
 Ordinance
 Other
 Paperback
 PASS
 Periodicals
 PIN
 Plan
 Policy
 Product
 Product - Data Sheet
 Program
 Provisions
 Requirements
 Revisions
 Rules & Regulations
 Standards
 State Amendment
 State Code
 State Manual
 State Plan
 State Standards
 Statute
 Study Guide
 Supplement
 Sustainability
 Technical Bulletin
 All
  • ISO
    ISO/IEC 27035-2:2023 Information technology - Information security incident management - Part 2: Guidelines to plan and prepare for incident response
    Edition: 2023
    $519.04
    / user per year

Content Description

This document provides guidelines to plan and prepare for incident response and to learn lessons from incident response. The guidelines are based on the “plan and prepare” and “learn lessons” phases of the information security incident management phases model presented in ISO/IEC 27035-1:2023, 5.2 and 5.6.

The major points within the “plan and prepare” phase include:

    information security incident management policy and commitment of top management;

    information security policies, including those relating to risk management, updated at both organizational level and system, service and network levels;

    information security incident management plan;

    Incident Management Team (IMT) establishment;

    establishing relationships and connections with internal and external organizations;

    technical and other support (including organizational and operational support);

    information security incident management awareness briefings and training.

The “learn lessons” phase includes:

    identifying areas for improvement;

    identifying and making necessary improvements;

    Incident Response Team (IRT) evaluation.

The guidance given in this document is generic and intended to be applicable to all organizations, regardless of type, size or nature. Organizations can adjust the guidance given in this document according to their type, size and nature of business in relation to the information security risk situation. This document is also applicable to external organizations providing information security incident management services.



About ISO

ISO, the International Organization for Standardization, brings global experts together to agree on the best way of doing things – for anything from making a product to managing a process. As one of the oldest non-governmental international organizations, ISO has enabled trade and cooperation between people and companies all over the world since 1946. The International Standards published by ISO serve to make lives easier, safer and better.
GROUPS