About: Information security standards

An Entity of Type: Thing, from Named Graph: http://dbpedia.org, within Data Space: dbpedia.org

The term "standard" is sometimes used within the context of information security policies to distinguish between written policies, standards and procedures. Organizations should maintain all three levels of documentation to help secure their environment. Information security policies are high-level statements or rules about protecting people or systems. (For example, a policy would state that "Company X will maintain secure passwords") A "standard" is a low-level prescription for the various ways the company will enforce the given policy. (For example, "Passwords will be at least 8 characters, and require at least one number.") A "procedure" can describe a step-by-step method to implementing various standards. (For example, "Company X will enable password length controls on all production

Property	Value
dbo:abstract	The term "standard" is sometimes used within the context of information security policies to distinguish between written policies, standards and procedures. Organizations should maintain all three levels of documentation to help secure their environment. Information security policies are high-level statements or rules about protecting people or systems. (For example, a policy would state that "Company X will maintain secure passwords") A "standard" is a low-level prescription for the various ways the company will enforce the given policy. (For example, "Passwords will be at least 8 characters, and require at least one number.") A "procedure" can describe a step-by-step method to implementing various standards. (For example, "Company X will enable password length controls on all production Windows systems.") This use of the term "standard" differs from use of the term as it relates to information security and privacy frameworks, such as ISO/IEC 27002 or COBIT. * v * t * e (en)
dbo:wikiPageID	10933349 (xsd:integer)
dbo:wikiPageLength	1221 (xsd:nonNegativeInteger)
dbo:wikiPageRevisionID	1060334715 (xsd:integer)
dbo:wikiPageWikiLink	dbr:Information_security dbc:Security dbr:ISO/IEC_27002 dbr:Information_security_policies
dbp:wikiPageUsesTemplate	dbt:Cleanup_rewrite dbt:Short_description dbt:Unreferenced dbt:Computer-security-stub
dcterms:subject	dbc:Security
rdfs:comment	The term "standard" is sometimes used within the context of information security policies to distinguish between written policies, standards and procedures. Organizations should maintain all three levels of documentation to help secure their environment. Information security policies are high-level statements or rules about protecting people or systems. (For example, a policy would state that "Company X will maintain secure passwords") A "standard" is a low-level prescription for the various ways the company will enforce the given policy. (For example, "Passwords will be at least 8 characters, and require at least one number.") A "procedure" can describe a step-by-step method to implementing various standards. (For example, "Company X will enable password length controls on all production (en)
rdfs:label	Information security standards (en)
owl:sameAs	freebase:Information security standards wikidata:Information security standards https://global.dbpedia.org/id/4n3Zk
prov:wasDerivedFrom	wikipedia-en:Information_security_standards?oldid=1060334715&ns=0
foaf:isPrimaryTopicOf	wikipedia-en:Information_security_standards
is dbo:wikiPageWikiLink of	dbr:Information_security dbr:Emantras
is foaf:primaryTopic of	wikipedia-en:Information_security_standards