ISO/IEC 27032 standard

ISO/IEC 27032 standard

National Police, TI

SUMMARY ABSTRACT
ISO/IEC 27032:2012 provides guidance for improving
ISO / IEC 27032:2012 provides guidance for the
the state of Cybersecurity, highlighting the unique aspects
improvement of the state of cybersecurity, extracting
of that activity and its dependencies on other security
the unique aspects of that activity and of its
domains, in particular: information security, network
dependencies in other security domains, in
security, internet security, and critical information
information security, network security
infrastructure protection (CIIP).
Internet security and infrastructure protection
information criticism (PICI).
It covers the baseline security practices for stakeholders
Covers basic level security practices for the
in the Cyberspace. This International Standard provides:
interested in cyberspace. This standard establishes what
an overview of Cybersecurity, an explanation of the
next: an overview of Cybersecurity,
relationship between Cybersecurity and other types of
an explanation of the relationship between Cybersecurity and
security, a definition of stakeholders and a description of
other types of security, a definition of the groups of
their roles in Cybersecurity, guidance for addressing
interest and a description of its role in security
common Cybersecurity issues and a framework to enable
cybernetics, guidance to addressing problems
common Cybersecurity practices and a framework that
stakeholders to collaborate on resolving Cybersecurity
issues.
allow the stakeholders to collaborate in the
cybersecurity problem solving.

1
 ISO/IEC 27032 Standard

1. INTRODUCTION people all over the world. In this way, you can
The International Organization for Standardization (ISO) help to prepare, detect, monitor, and respond to the
has announced the creation of the ISO/IEC 27032 standard "attacks," they have explained from ISO. The organization expects

for cybersecurity. The organization has explained that that ISO/IEC 27032 allows combating attacks from
aims to guarantee security in exchanges of social engineering, hackers, malware, spyware and other types
information on the Web with this new standard, which can unwanted software. (Antonio García, October 18
help combat cybercrime with cooperation and 2012, p.1)
coordination. ISO/IEC 27032 has been developed by the committee
2. ISO/IEC 27032 Standard ISO technician. Those interested in obtaining this standard
ISO is an entity focused on the development of standards. they can do it through the National Institutes
international agreements that allow common use of all kinds of of ISO in the different countries or in the Central Secretariat of
tools. Their participation on the Internet is fundamental, the Organization.
especially in the field of security. Having 3. CONCLUSION
standards that guarantee quality and protection of This work has described the main
online operations and activities are a way to improve the elements considered in the definition of the
security, for which the developments and activities ISO/IEC 27032 standard as a Security model
ISO standards are fundamental. of Information in ICT.
With those objectives, ISO has presented a
new standard to improve online security. In 4. BIBLIOGRAPHY
concretely, the organization has explained that ISO / IEC 27000, Information Technology
currently, cyberspace is a complex environment that Security techniques - Information systems of
consists of interactions between people, software, and services security management - General information and vocabulary
destined for the global distribution of information and Organized crime and Cybercrime: Implications for
communication". It is a very large context in the businesses.
that collaboration is essential to ensure an environment http://www.cert.org/archive/pdf/cybercrime-
sure. The provided text does not contain any translatable content.
To try to cover gaps in other standards has ISO/IEC 27032 Guidelines for Cybersecurity.
born ISO/IEC 27032, as explained by ISO. It is about http://www.iso.org/iso/catalogue_detail.htm?csnumber=
of a standard that guarantees safety guidelines that 44375
the organization has assured that it will provide ITU-T Study Group 17 Question 6/17.
a general collaboration among the multiple parties http://www.itu.int/ITU-T/studygroups/com17/sg17-
interested parties to reduce risks on the Internet. q6.html
specifically, ISO/IEC 27032 provides a framework ITU-T X.1207 (04/2008), Series X: Data Networks,
safe for information exchange, the handling of Open System Communications and Security,
incidents and the coordination to make more secure the Telecommunication Security - Guidelines for
processes. Telecommunication Service Providers for Addressing the
The standard (ISO/IEC 27032) facilitates the Risk of Spyware and
secure and reliable collaboration to protect privacy Potentially Unwanted Software