SR EN ISO/IEC 27005:2024

Information security, cybersecurity and privacy protection - Guidance on managing information security risks (ISO/IEC 27005:2022)

This document provides guidance to assist organizations to: — fulfil the requirements of ISO/IEC 27001 concerning actions to address information security risks; — perform information security risk management activities, specifically information security risk assessment and treatment. This document is applicable to all organizations, regardless of type, size or sector.

Add to cart

General information

Status : Valid
Approval date : 9/30/2024
Number of pages : 74
ICS : 35.030 IT Security
Technical Committee : 208 - IT security techniques

Relations with other standards:

Replaces SR ISO/IEC 27005:2016