BS 7799
|
|
BS 7799 is the British Standard for information security management.
BS 7799:1999 Part 1 was the UK standardised code of practice for information security management, which became ISO/IEC 17799. The international standard is now published as a British standard, BS ISO/IEC 17799:2000, BS 7799-1:2000 (long name!).
BS 7799-2:2002 or BS 7799 Part 2 is a specification for an information security management system (ISMS), which can be used as the basis for accredited certification/registration.
In the context of BS 7799 Part 2 certification/registration of an organisation’s ISMS is one means of providing assurance that the certified/registered organisation has implemented a system for the management of information security in line with the Part 2 standard.
In some countries, the bodies which verify conformity of ISMS to specified standards are called “certification bodies”, in others “registration bodies”, in others “assessment and registration bodies”, or “certification/ registration bodies”, and in others still, “registrars”. [edit]
External links
- Certificate Register (http://www.17799central.com/cert.htm)
- BS7799 Part 2 PDCA Methodology (http://www.induction.to/bs7799/)
- BSI's BS7799 Source Site (http://www.standardsdirect.org/iso17799.htm)