ISO/IEC 27032 Cybersecurity Guidelines for Internet Security Certified Foundation
ISO/IEC 27032 provides guidance for improving the state of Cybersecurity, drawing out the unique aspects of that activity and its dependencies on other security domains, in particular:
information security,
network security,
internet security, and
critical information infrastructure protection (CIIP).
It covers the baseline security practices for stakeholders in the Cyberspace. This International Standard provides:
an overview of Cybersecurity,
an explanation of the relationship between Cybersecurity and other types of security,
a definition of stakeholders and a description of their roles in Cybersecurity,
guidance for addressing common Cybersecurity issues, and
a framework to enable stakeholders to collaborate on resolving Cybersecurity issues.
The fundamental concepts of Cybersecurity and implement the practice of protecting systems, networks and programs from digital attacks. These cyber-attacks generally aim to access, change or destroy confidential information; extort money from users; or interrupt normal business processes.
