RealSecurity

In 1996, the British Standards Institute (BSI) published the BS-7799 information security management standard defining a management system for the oversight of information security. Three years later, Part 2 was published providing a foundation to perform audits and to ultimately attain a certification from the BSI. The International Organization for Standardization (ISO), in collaboration with the International Electrotechnical Commission (IEC), drew from the BS-7799 to create the ISO-17799 security standard, published in 2000. In February 2005, the ISO/IEC published an update to the ISO-17799, setting a new standard for information security management. Once again drawing from previous standards, but making key additions that has resulted in a comprehensive guideline for organization worldwide.