When things go wrong
There are a number of categories which deal with the handling of problems, events and/or incidents.[11] These are additional to the improvement-process requirements of maintaining an ISMS, and deal with what should be done in reaction to, and in order to recover from, a security breach.
[11] ISO27001 defines information security incidents and information security events separately. Not all events are, or will be, incidents, but both require management and this should be defined. Clarification should also be given as to when an event might escalate to incident level or be classified as such.
The severity of information security breaches can vary massively. If the problem is likely to cause a significant challenge to the normal ...
Get An Introduction to Information Security and ISO27001: A Pocket Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
