ECIH - Standards

ISO/IEC 27000 (27000:2018)

:2013 Annex A. 16 Information security. 27002 - information security standards. 27035 - basic concepts and phrases of information security

Payment Card Industry Data Security Standard (PCI DSS)

MINIMUM SECURITY REQUIREMENTS. build and maintain seucre network, protect cardhodler data, regulary monitor and test, maintain information seurity policy. Access control, awarness training, planning, incident response

NIST Special Publication 800-series (SP 800)

based of FISMA, regarding ocmputer security, BEST PRACTICES, GUIDELINES. For US FEDERAL

Information Security Framework (ISF)

buisiness-oriented informations of security topics. Agile, respond quickly

NERC 1300 Cyber security

for reducing risk

RFC 2196

guidelines to setting computer security policies, recommendations. online community

FRAMEWORK CIS critical security controls

defense in depth. set of best practices

FRAMEWORK Cobit

IT governance and suppoorting. allows managers to BRIDGE THA GAP. make evertying ok and simple

FRAMWORK NIST SP800-61

step-by-step instructions for IR teams to create proper polcy and plan. Defines integrating forensics techniques

Sarbnes-Oxley Act (SOX)

protect investors and public

Health Insurance Portability and Accountability Act (HIPPA)

to ensure CIA to healt information

Federal information Security Managemnt Act (FISMA)

federal operations and assets. minimum SEC REQUIREMENTS, guidelines

Gramm–Leach–Bliley Act (GLBA)

keep data safely in financial institutions. information sharing practices with bank-bank and bank-client

General Data Protection Regulation (gdpr)

DESIGNED TO HARMONIZE DATA PRIVACY LAWS ACROSS eUROPE

Digital Millenium copyraight act (DMCA)

implement 2 treaties of the World Intellectual Property Organization

Data Protection Act 2018

processing individual information.