Provides guidelines for information security risk management. Supports the general concept specified in ISO/IEC 27001 (published in South Africa as an identical adoption under the designation SANS 27001), and is designed to assist the satisfactory implem
SANS 27005:2009 history
0000 SANS 27005-2012
2009SANS 27005:2009 Information technology - Security techniques - Information security risk management