ISO - Integrating information security and service management
Available at the ISO 27013 Standard Page .
What is the of your IT and security compliance teams? Are you targeting a specific certification deadline ? iso 27013 pdf
To successfully execute an integrated implementation using the principles found in the ISO 27013 PDF, follow these phase-driven steps:
Align the scopes early, or clearly document where the boundaries diverge. Creating massive, unreadable integrated policy books. iso 27013 pdf
Many frameworks handle these needs separately. ISO/IEC 27001 governs information security management systems (ISMS). ISO/IEC 20000-1 governs IT service management systems (SMS).
: Ensure you purchase the most recent version of the standard to guarantee compatibility with current editions of ISO 27001 and ISO 20000-1. Conclusion iso 27013 pdf
ISO/IEC 27013 is an international standard titled "Information technology — Security techniques — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1" .
In a siloed organization, a security breach (like a malware infection) is handled by the security operations center (SOC), while a service outage caused by that malware is handled by the IT Helpdesk. ISO 27013 shows how to build a unified incident response workflow where security incidents and service incidents are logged, triaged, and resolved using a shared ticketing and escalation pathway. 2. Change and Configuration Management
Organizations today face dual pressures. They must secure sensitive information assets. They must also deliver high-quality Information Technology (IT) services.