ISO/IEC 27554:2024
Information security, cybersecurity and privacy protection - Application of ISO 31000 for assessment of identity-related risk
Circulation Date:
2024-07
Edition:
1.0
Language: EN - english
Seitenzahl: 18 VDE Artno.: 253099
This document provides guidelines for identity-related risk, as an extension of ISO 31000:2018. More specifically, it uses the process outlined in ISO 31000 to guide users in establishing context and assessing risk, including providing risk scenarios for processes and implementations that are exposed to identity-related risk.
This document is applicable to the risk assessment of processes and services that rely on or are related to identity. This document does not include aspects of risk related to general issues of delivery, technology or security.