ISO 9001
ISO 9001: A standard that sets out the criteria for a quality management system. This standard is based on a number of quality management principles, including a strong customer focus, the involvement of top management, a process approach, and a commitment to continuous improvement. Even though it is not directly related to cybersecurity, its principles […]
ISO/IEC Guide 73
ISO/IEC Guide 73: ISO/IEC Guide 73, “Risk management — Vocabulary,” provides terms and definitions related to risk management to encourage a mutual and consistent understanding of and a coherent approach to the description of activities relating to the management of risk. It is intended to be used by those engaged in managing risks and those […]
ISO/IEC 15408-1
ISO/IEC 15408-1: Part of the Common Criteria for Information Technology Security Evaluation, this international standard provides a framework for specifying security functional and assurance requirements in IT products and systems. It details the general model for evaluation, ensuring that evaluated products meet certain trusted security properties.
ISO/IEC/IEEE 15288
ISO/IEC/IEEE 15288: This is an international standard for systems and software engineering, providing a process framework that facilitates the application of system life cycle processes. It covers a range of activities including acquisition, supply, development, operation, and maintenance of systems. By applying the guidelines in ISO/IEC/IEEE 15288, organizations can improve the quality of their systems […]
ISO/IEC 17788
ISO/IEC 17788: A standard that provides a comprehensive framework for understanding cloud computing, including common terminology, fundamental concepts, and characteristics. It assists organizations in recognizing the benefits and addressing the security considerations associated with cloud services, thereby supporting informed decision-making and risk management.
IT Architecture
IT Architecture: The structural design of information systems in an organization. It encompasses various aspects such as hardware, software, networking, and data storage, and their interconnections. The architecture defines the blueprint for the system and ensures that all components work together effectively, consistently, and securely, aligning with the organization’s goals and strategic direction.