ISO/IEC 27033 is a multi-part standard derived from the existing five-part ISO / IEC 18028. The network security standard has been fundamentally revised.
ISO/IEC 27033-1: 2015 provides an overview of network security and related definitions. Defines and describes the concepts associated with network security and provides management guidance. (Network security refers to the security of the equipment, the security of administrative activities related to the equipment, applications/services, and end-users, as well as the security of the information transmitted through the communication links).
It is relevant to anyone who owns, operates or uses a network. This includes officers and other managers or non-technical users, as well as managers and administrators who have specific responsibilities for information security and / or network security and operation, or who are responsible for the entire security program and policy development. of security of an organization. It is also relevant for anyone involved in the planning, design, and implementation of the architectural aspects of network security.