Examine the published ISO/IEC 27000 series of standards for security management. A good starting point for
this is http://en.wikipedia.org/wiki/ISO/IEC_27000-series (Links to an external site.) although there is a great
deal of information regarding ISO-27K on the Web. (Hint, search on specific standards for more detailed
Prepare a paper in which you describe ISOs 27001, 27002, 27003, 27004, 27005, and 27006. Explain the
intent of each standard and how it might be applied or used in a mid-sized organization. Summarize the
essential points of that standard and what security managers can do to implement the standard in their
organization. Include an introduction that is a brief overview of the ISO/IEC 27000 series.
The post Security Auditing and Standards first appeared on COMPLIANT PAPERS.