%0 Journal Article
%T ISO/IEC 27000, 27001 and 27002 for Information Security Management
%A Georg Disterer
%J Journal of Information Security
%P 92-100
%@ 2153-1242
%D 2013
%I Scientific Research Publishing
%R 10.4236/jis.2013.42011
%X <p class=\"MsoNormal\">
	<span lang=\"EN-US\">With the increasing significance of information technology, there is
an urgent need for adequate measures of informa</span><span lang=\"EN-US\">tion security.
Systematic information security management is one of most important initiatives
for IT management. At least since reports about privacy and security breaches,
fraudulent accounting practices, and attacks on IT systems ap</span><span lang=\"EN-US\">peared
in public, organizations have recognized their responsibilities to safeguard
physical and information assets. Se</span><span lang=\"EN-US\">curity standards can be used as guideline or
framework to develop and maintain an adequate information security man</span><span lang=\"EN-US\">agement
system (ISMS). The standards ISO/IEC 27000, 27001 and 27002 are international
standards that are receiving growing recognition and adoption. They are
referred to as ˇ°common language of organizations around the worldˇ± for
information security [1]. With ISO/IEC 27001 companies can have their ISMS
certified by a third-party organization and thus show their customers evidence
of their security measures.</span><span lang=\"EN-US\"><o:p></o:p></span> 
</p>
%K Security
%K Standards
%K ISO/IEC 27000
%K ISO 27001
%K ISO 27002
%K ISO 27 K
%U http://www.scirp.org/journal/PaperInformation.aspx?PaperID=30059