Skip to main content
Back

EVS-EN ISO/IEC 27040:2016

Information technology - Security techniques - Storage security (ISO/IEC 27040:2015)

General information

Valid from 05.09.2016
Base Documents
ISO/IEC 27040:2015; EN ISO/IEC 27040:2016
Directives or regulations
None

Standard history

Status
Date
Type
Name
05.09.2016
Main
ISO/IEC 27040:2015 provides detailed technical guidance on how organizations can define an appropriate level of risk mitigation by employing a well-proven and consistent approach to the planning, design, documentation, and implementation of data storage security. Storage security applies to the protection (security) of information where it is stored and to the security of the information being transferred across the communication links associated with storage. Storage security includes the security of devices and media, the security of management activities related to the devices and media, the security of applications and services, and security relevant to end-users during the lifetime of devices and media and after end of use.
Storage security is relevant to anyone involved in owning, operating, or using data storage devices, media, and networks. This includes senior managers, acquirers of storage product and service, and other non-technical managers or users, in addition to managers and administrators who have specific responsibilities for information security or storage security, storage operation, or who are responsible for an organization's overall security program and security policy development. It is also relevant to anyone involved in the planning, design, and implementation of the architectural aspects of storage network security.
ISO/IEC 27040:2015 provides an overview of storage security concepts and related definitions. It includes guidance on the threat, design, and control aspects associated with typical storage scenarios and storage technology areas. In addition, it provides references to other International Standards and technical reports that address existing practices and techniques that can be applied to storage security.

Required fields are indicated with *

*
*
*
PDF
39.04 € incl tax
Paper
39.04 € incl tax
Browse standard from 2.44 € incl tax
Standard monitoring

Customers who bought this item also bought

Main

EVS-EN ISO/IEC 27041:2016

Information technology - Security techniques - Guidance on assuring suitability and adequacy of incident investigative method (ISO/IEC 27041:2015)
Newest version Valid from 05.09.2016
Main

EVS-EN ISO/IEC 27042:2016

Information technology - Security techniques - Guidelines for the analysis and interpretation of digital evidence (ISO/IEC 27042:2015)
Newest version Valid from 05.09.2016
Main

EVS-EN ISO/IEC 27043:2016

Information technology - Security techniques - Incident investigation principles and processes (ISO/IEC 27043:2015)
Newest version Valid from 05.09.2016
Main

ISO/IEC 27039:2015

Information technology -- Security techniques -- Selection, deployment and operations of intrusion detection systems (IDPS)
Newest version Valid from 11.02.2015