Wednesday, September 11, 2013

Comparison between ISO 27005, OCTAVE & NIST SP 800-30

Author: Anuj Tewari

Unfortunately, hope is not a plan, so organizations look to standards bodies for guidance on security best practices. But choosing a best practices standard or framework to follow is its challenge. There are many of them and many factors to evaluate, including the standards’ similarities to existing organizational practices, costs, complexity, supporting documentation.