ISO/IEC 27004
ISO/IEC 27004:2016
Information technology - Security techniques - Information security management - Monitoring, measurement, analysis and evaluation
ISO/IEC 27004:2016 provides guidelines intended to assist organizations in evaluating the information security performance and the effectiveness of an information security management system in order to fulfil the requirements of ISO/IEC 27001:2013, 9.1. It establishes:
a) the monitoring and measurement of information security performance;
b) the monitoring and measurement of the effectiveness of an information security management system (ISMS) including its processes and controls;
c) the analysis and evaluation of the results of monitoring and measurement.
ISO/IEC 27004:2016 is applicable to all types and sizes of organizations.
a) the monitoring and measurement of information security performance;
b) the monitoring and measurement of the effectiveness of an information security management system (ISMS) including its processes and controls;
c) the analysis and evaluation of the results of monitoring and measurement.
ISO/IEC 27004:2016 is applicable to all types and sizes of organizations.
CHF 199.-
Technical committee
ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protectionKeywords
Cyber security - Smart city| Publication type | International Standard |
| Publication date | 2016-12-15 |
| Edition | 2.0 |
| ICS | 35.030 |
| Pages | 58 |
| File size | 3.11 MB |