ISO17799 (27002) Information Security Management Standard in Plain English

BRIEF HISTORY OF ISO 27002 AND ISO 17799

ISO 27002 (17799) is a code of practice for information security
management. It can be used by any organization that needs to establish a comprehensive information security management
program or improve its current information security practices.

When the standard was officially published on June 15, 2005, it was known as ISO/IEC 17799 2005. On July 1, 2007, the name was formally changed to ISO/IEC 27002 2005. However, nothing else has changed. The content is still exactly the same. The name was changed in order to make it clear that ISO/IEC 17799 belongs with the ISO/IEC 27000 series of information security standards.

The ISO/IEC 17799 2005 standard (now ISO/IEC 27002 2005) was developed by the IT Security Subcommittee (SC 27) of the Joint Technical Committee on Information Technology (ISO/IEC JTC 1). It cancels and replaces the old ISO/IEC 17799 2000 standard which is now obsolete. While much of the content is the same, the new ISO/IEC 17799 2005 (27002) standard has been entirely rewritten, reorganized, and updated in order to address new and emerging information security issues. In addition, one new section has been added on information security incident management (section 13).


How to Order	Detailed Site Map	Alphabetical Index	Home Page

Our Products	Our Prices	Our Guarantee	Our Customers

ISO17799:2000

INFORMATION SECURITY STANDARD

TRANSLATED INTO PLAIN ENGLISH