Content-Type: |
text/plain; charset="us-ascii" |
Date: |
Tue, 12 Aug 2014 12:00:29 +0000 |
Reply-To: |
|
Subject: |
|
From: |
|
Content-Transfer-Encoding: |
8bit |
In-Reply-To: |
|
MIME-Version: |
1.0 |
Sender: |
|
Parts/Attachments: |
|
|
Max:
There are a number of standards available relating to information technology techniques and methodology. ISO, ARMA, NIST, and others take part in standards development. A few standards that may be helpful are:
ISO/IEC 27001:2013 Information technology -- Security techniques -- Information security management systems -- Requirements
ISO/IEC 27003:2010 Information technology -- Security techniques -- Information security management system implementation guidance
ISO/IEC 27004:2009 Information technology -- Security techniques -- Information security management -- Measurement
IEC 31010:2009 Risk management -- Risk assessment techniques
ISO 31000:2009 Risk management -- Principles and guidelines
ISO Guide 73:2009 Risk management -- Vocabulary
NIST Special Publication 800-34 Contingency Planning Guide for Information Technology Systems
NIST Special Publication 800-88 Guidelines for Media Sanitization
The ISO standards must be purchased. The NIST publications can be downloaded without charge at http://csrc.nist.gov/publications/PubsSPs.html.
Ginny Jones
(Virginia A. Jones, CRM, FAI)
Records Manager
Information Technology Division
Newport News Dept. of Public Utilities
Newport News, VA
[log in to unmask]
List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance
To unsubscribe from this list, click the below link. If not already present, place UNSUBSCRIBE RECMGMT-L or UNSUB RECMGMT-L in the body of the message.
mailto:[log in to unmask]
|
|
|