AOH :: ISN-1050.HTM

New Version of ISO17799 Published

New Version of ISO17799 Published
New Version of ISO17799 Published

Forwarded from: Sue  


The official revision of ISO 17799, the international computer security
standard, has today been released. This new version has been under
development for several years, and introduces a number of siginificant
changes. The old version, originally published in 2000, has been

The new standard now contains eleven 'core' chapters, as opposed to the
original ten, with existing chapters being re-organized. The new format
is as follows:

1) Security Policy
2) Organizing Information Security
3) Asset Management
4) Human Resources Security
5) Physical and Environmental Security
6) Communications and Operations Management
7) Access Control
8) Information Systems Acquisition, Development and Maintenance
9) Information Security Incident Management
10) Business Continuity Management
11) Compliance. 

ISO17799:2005 also introduces controls to address a range of new issues.
These include topics such as outsourcing and patch management. In
addition, other areas have been substantially extended or re-shaped,
such as employment termination, and mobile communication.

Steps have also been taken to enhance the "user friendliness" of the

The following official outlet (BSI) has been updated to provide copies
of the new standard (as opposed to the old): 

The ISO 17799 Toolkit, the standard's support and starter kit, has also
been updated to include the new version: 

For further information see the ISO 17799 Newsletter archive site at: 

Thanks and kind regards, 

ISO 17799 Newsletter

Attend the Black Hat Briefings and
Training, Las Vegas July 23-28 - 
2,000+ international security experts, 
10 tracks, no vendor pitches. 

Site design & layout copyright © 1986-2015 CodeGods