ISO/IEC 27000 Threat Intelligence, v2022
Specifies requirements in accordance with the security and privacy controls specified by ISO/IEC Publication 27001:2022, related to threat intelligence.
Assessment Step
1
Threat Intelligence (ThreatIntelligence)
Does the organization collect and analyze information about information security threats to produce threat intelligence?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) and supporting notes as appropriate to support the assessor's response to this assessment step.
|
Conformance Criteria (1)
Threat Intelligence
Information relating to information security threats shall be collected and analysed to produce threat intelligence.
Citations
27001
Annex A, Control 5.7
27002
Section 5.7
|