ISO/IEC 27000 Threat Intelligence, v2022

Specifies requirements in accordance with the security and privacy controls specified by ISO/IEC Publication 27001:2022, related to threat intelligence.

Assessment Step

1
Threat Intelligence (ThreatIntelligence)
Does the organization collect and analyze information about information security threats to produce threat intelligence?
Artifact
A1
Provide evidence (e.g. organizational policies, procedures, compliance/assessment reports, etc.) and supporting notes as appropriate to support the assessor's response to this assessment step.

Conformance Criteria (1)

Threat Intelligence
Information relating to information security threats shall be collected and analysed to produce threat intelligence.
Citations
27001
Annex A, Control 5.7
27002
Section 5.7