Standards für Telekom-Betreiber
Zu den relevanten Standards für Telekom-Betreiber zählen insbesondere ISO/IEC-, BS-, ITU-T-, NIST-, FIPS-, NICC-, KATAKRI- und ISF-Standards sowie CobiT, ITIL und IT-Grundschutz-Kataloge des BSI und PCI DSS.
- ISO/IEC 27001, ISO/IEC 27002 “Information security management"
- ISO/IEC 24762 “Guidelines for information and communications technology disaster recovery services"
- ISO/IEC 27005 “Information security risk management"
- ISO/IEC 27011 “Information security management guidelines for telecommunications"
- BS 25999-1 “Guide to Business Continuity Management"
- BS 25999-2 “Business Continuity Management Specification"
- ITU-T Recommendation X.1051 (04/2016) “Information technology – Security techniques - Code of practice for information security controls based on ISO/IEC 27002 for telecommunications organizations"
- ITU-T Recommendation X.1052 (05/2011) “Information security management framework"
- ITU-T Recommendation X.1054 (09/2012) “Information technology – Security techniques – Governance of information security”
- ITU-T Recommendation X.1055 (11/2008) “Risk management and risk profile guidelines for telecommunication organizations”
- ITU-T Recommendation X.1056 (01/2009) “Security incident management guidelines for telecommunications organizations”
- ITU-T Recommendation X.800 (1991) “Security architecture for Open Systems Interconnection for CCITT applications”
- ITU-T Recommendation X.805 (10/2003) “Security architecture for systems providing end-to-end communications”
- ISF-Standard 2007 “The Standard of Good Practice for Information Security"
- CobiT "Control Objectives for Information and related Technology”
- ITIL Service Support
- ITIL Security Management
- IT-Grundschutz-Kataloge, Deutschland
- KATAKRI, National security auditing criteria, Finnland
- NIST SP 800-34 Rev. 1 “Contingency Planning Guide for Federal Information Systems"
- NIST SP 800-61 Rev. 2 “Computer Security Incident Handling Guide"
- FIPS PUB 200 “Minimum Security Requirements for Federal Information and Information Systems"
- NICC ND 1643 “Minimum security standards for interconnecting communication providers"
- PCI DSS Data Security Standard
Letzte Aktualisierung: 24. März 2017
Für den Inhalt verantwortlich: Rundfunk und Telekom Regulierungs-GmbH (RTR-GmbH)