- BS 7799
BS 7799 was a standard originally published by the
British Standards Institute (BSI) in1995 . It was written by theUnited Kingdom Government's Department of Trade and Industry (DTI), and after several revisions, was eventually adopted byISO asISO/IEC 17799 , "Information Technology - Code of practice for information security management." in2000 .ISO/IEC 17799 was most recently revised in June2005 and was renamed toISO/IEC 27002 in July 2007.A second part to BS7799 was first published by BSI in
1999 , known as BS 7799 Part 2, titled "Information Security Management Systems - Specification with guidance for use." BS 7799-2 focused on how to implement anInformation security management system (ISMS), referring to the information security management structure and controls identified in BS 7799-2, which later becameISO/IEC 27001 . The2002 version of BS 7799-2 introduced the Plan-Do-Check-Act (PDCA ) (Deming quality assurance model), aligning it with quality standards such asISO 9000 . BS 7799 Part 2 was adopted by ISO asISO/IEC 27001 in November 2005.BS7799 Part 3 was published in 2005, covering risk analysis and management. It aligns with ISO/IEC 27001.
References
* ISO/IEC 27001:2005
* ISO/IEC 27002:2005
* ISO/IEC 27000 (not yet published)ee also
*
Cyber security standards
*ISO/IEC 27002 , the internationalized version of BS 7799 Part 1External links
* [http://www.standardsdirect.org/iso17799.htm Source of BS 7799 from BSI Outlet]
* [http://iso-17799.safemode.org/ BS7799 & ISO 17799 Wiki]
* [http://www.bsi-global.com/ British Standards Institution] -> BSI Shop
* [http://www.17799central.com/cert.htm Certificate register]
* [http://www.induction.to/bs7799/ BS 7799 Part 2 PDCA Methodology]
Wikimedia Foundation. 2010.
