9 Designing the ISMS設(shè)計(jì)ISMS

9.1 0verview of designing the ISMS設(shè)計(jì)ISMS綜述

9.2 Design organizational information security設(shè)計(jì)信息安全組織

9.3 Design ICT and physical information security設(shè)計(jì)ICT與物理信息安全

9.4 Design ISMS specific information security設(shè)計(jì)ISMS特定安全

9.5Produce the final ISMS project plan產(chǎn)生最后的ISMS項(xiàng)目計(jì)劃Annex A(informative) Checklist description檢查表描述

Annex B(informative) Roles and responsibilities for Information Security信息安全角色與職責(zé)Annex C(informative) Information about Internal Auditing關(guān)于內(nèi)審的信息

Annex D(informative) Structure of policies方針／策略的結(jié)構(gòu)Annex E(informative) Monitoring and measuring監(jiān)視與測(cè)量Bibliography參考文獻(xiàn)

IS()/IEC 27003: 2010更詳細(xì)的介紹，可以參考中國(guó)標(biāo)準(zhǔn)出版社的《信息安全管理體系應(yīng)用手冊(cè)》與<信息安全管理體系實(shí)施案例及文件集》。