This blog is a membership based discussion forum on Project Management, Software Quality, CMMI® for development, ISMS and associated subjects. It provides a common platform for our training participants and others to share views and obtain expert opinion on issues related to above subjects. Also, it is used by QualityMentors training participants to upload their personal details in a secured manner in line to the guidelines laid down in ISO/IEC 17024:2003. This blog draws its strength from its members who are welcome to share professional and personal experiences, comments, articles and reference links to make it a preferred knowledge repository for their collective use. It encourages fact based decision making as an success enabler for projects in member organizations.
Monthly Archives: August 2011
August 27, 2011Posted by on
The International Organization for Standardization (ISO) has published a new standard on information security risk management. It is designed to help organizations better manage information security risks. The new standard, named ISO 27005:2011, consists of context establishment, risk assessment, risk treatment, risk acceptance, risk communication, and risk monitoring/ review. It incorporates a number of previously issued risk management documents: ISO 31000:2009, ISO/IEC 31010:2009, and ISO Guide73:2009. The standard is currently available from ISO site. After a gap of a few months, it will be available from national standards bureaus and suppliers of standard.