all InfoSec news
Implementing an ISO-compliant threat intelligence program
Malware Analysis, News and Indicators - Latest topics malware.news
Implementing a threat intelligence program that meets the definition of threat intelligence control as described in ISO/IEC 27002:2022 — a set of standards set forth by the International Organization for Standardization — is not onerous.
The ISO/IEC 27002 standard describes a non-exhaustive list of security controls that organizations can implement on their own or as part of an ISO/IEC 27001-compliant cybersecurity program.
The guidance within ISO 27001 identifies which security controls are appropriate, while ISO 27002 describes the controls …
control controls definition iec intelligence international iso list non organization organizations own program security security controls standard standardization standards threat threat intelligence