iso27005 – WindowsTechs.com

What does "Fraudulent copying of software" mean in ISO 27005?

Posted on December 14, 2023 by salva

In ISO 27005 Annex C "Examples of typical threats", under "Unauthorized actions", I do not understand the example of "Fraudulent copying of software".
From my point of view this is kind of a "disclosure/i… Continue reading What does "Fraudulent copying of software" mean in ISO 27005?→

Potential risks per ISO 27002 clauses 5-18

Posted on December 2, 2018 by OrangeSpider

I have a study project related to establishing of ISO 27001.

I will do GAP analyses on “fictional” company over all ISO 27001 Annex A controls using ISO 27002.

After I do that, I will detect the risks using the results of that GAP analys… Continue reading Potential risks per ISO 27002 clauses 5-18→

Is context establishment a repetitive process in standard ISO 27005?

Posted on February 1, 2017 by unixbek

I am writing our internal information security risk management procedure. This procedure should describe how exactly we do our risk identification, assessment, treatment and monitoring.

I wanted to follow ISO 27005, but I am stuck in Cont… Continue reading Is context establishment a repetitive process in standard ISO 27005?→