Standardization of Information Security Management System: ISO/IEC 27001:2005, ITIL®, CoBIT®

Authors

  • Martina Jakábová Slovak University of Technology in Bratislava Faculty of Materials Science and Technology in Trnava
  • Jana Urdziková Slovak University of Technology in Bratislava Faculty of Materials Science and Technology in Trnava
  • Emília Mironovová Slovak University of Technology in Bratislava Faculty of Materials Science and Technology in Trnava

DOI:

https://doi.org/10.3991/ijes.v1i2.2937

Abstract


Information is currently the most important asset of modern companies. Its security is therefore very important and becomes the top priority of each company. Unfortunately, there is no simple recipe providing 100 % security of information. A company must apply the best security procedures with the aim to achieve an appropriate level of its information security. This paper presents and compares the most widely used approaches to Information Security Management System â?? ISO/IEC 27001:2005, BS 7799, ITIL® and CoBIT®. Each standard has its own scope, focus and target audience, which complement each other and play an important role in a company. The company should have an implemented methodological guidance of IT management to ensure a consistent approach to IT management and IT security. In addition to the standards and frameworks, other important players in the standardization of information security are e.g. AIM, BISLA®, CMMI®, ISO/IEC 15504â??x, AS8015, etc.

Author Biographies

Martina Jakábová, Slovak University of Technology in Bratislava Faculty of Materials Science and Technology in Trnava

Institute of Industrial Engineering, Management and Quality

Jana Urdziková, Slovak University of Technology in Bratislava Faculty of Materials Science and Technology in Trnava

Institute of Industrial Engineering, Management and Quality

Emília Mironovová, Slovak University of Technology in Bratislava Faculty of Materials Science and Technology in Trnava

Department of Humanities and Social Sciences

Downloads

Published

2013-11-02

How to Cite

Jakábová, M., Urdziková, J., & Mironovová, E. (2013). Standardization of Information Security Management System: ISO/IEC 27001:2005, ITIL®, CoBIT®. International Journal of Recent Contributions from Engineering, Science & IT (iJES), 1(2), pp. 11–18. https://doi.org/10.3991/ijes.v1i2.2937

Issue

Vol. 1 No. 2 (2013)

Section

Papers

License

The submitting author warrants that the submission is original and that she/he is the author of the submission together with the named co-authors; to the extend the submission incorporates text passages, figures, data or other material from the work of others, the submitting author has obtained any necessary permission.
Articles in this journal are published under the Creative Commons Attribution Licence (CC-BY What does this mean?). This is to get more legal certainty about what readers can do with published articles, and thus a wider dissemination and archiving, which in turn makes publishing with this journal more valuable for you, the authors.
By submitting an article the author grants to this journal the non-exclusive right to publish it. The author retains the copyright and the publishing rights for his article without any restrictions.
This journal has been awarded the SPARC Europe Seal for Open Access Journals (What's this?)