ISO/IEC 27003: 2010

IS/IEC 27003: 2010全稱為Information technology-Security techniques-Informa- tion security management system implementation guidance，信息技術(shù) 安全技術(shù) 信息安全管理體系 應(yīng)用指南。

IS/IEC 27003: 2010目前尚無(wú)國(guó)家標(biāo)準(zhǔn)與之對(duì)應(yīng)。

IS/IEC 27003：2010正文共9章，另加1個(gè)引言、5個(gè)附錄以及參考文獻(xiàn)。分別為：

0 Introduction引言

1Scope范圍

2 Normative references規(guī)范性引用文件

3 Terms and definitions術(shù)語(yǔ)與定義

4 Structure of this International Standard本國(guó)際標(biāo)準(zhǔn)的結(jié)構(gòu)

4.1 General structure of clauses章節(jié)機(jī)構(gòu)概述

4.2 General structure of a clause章節(jié)內(nèi)結(jié)構(gòu)概述4.3 Diagrams圖表

5 0btaining management approval for initiating an ISMS project為啟動(dòng)ISMS項(xiàng)目獲得管理者支持

5.1verview of obtaining management approval for initiating an ISMS project為啟

5.2 Clarify the organization's priorities to develop an ISMS組織的有效順序5.3 Define the preliminary ISMS scope定義初始的ISMS范圍

5.4 Create the business case and the project plan for management approval產(chǎn)生管理者批準(zhǔn)的業(yè)務(wù)及項(xiàng)目計(jì)劃