ISO/IEC 27554:2024

Information security, cybersecurity and privacy protection — Application of ISO 31000 for assessment of identity-related risk

Publication date:   Jul 1, 2024

General information

60.60 Standard published   Jul 1, 2024

ISO/IEC

ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection

International Standard

35.030   IT Security | 03.100.01   Company organization and management in general

Buying

  Published

PDF - €76.23

  English  



Buy

Scope

This document provides guidelines for identity-related risk, as an extension of ISO 31000:2018. More specifically, it uses the process outlined in ISO 31000 to guide users in establishing context and assessing risk, including providing risk scenarios for processes and implementations that are exposed to identity-related risk.
This document is applicable to the risk assessment of processes and services that rely on or are related to identity. This document does not include aspects of risk related to general issues of delivery, technology or security.

Life cycle

NOW

PUBLISHED
ISO/IEC 27554:2024
60.60 Standard published
Jul 1, 2024