ISC2 Governance, Risk and Compliance (CGRC) Practice Question
Following security categorization, a U.S. federal agency wants to align its selected safeguards with an international standard that lists specific information security controls and offers implementation guidance to ensure confidentiality, integrity, and availability for each information type. Which ISO/IEC 27000-series standard should the team consult?
ISO/IEC 27001 - Information security management systems - Requirements
ISO/IEC 27002 - Code of practice for information security controls
ISO/IEC 27005 - Information security risk management
ISO/IEC 27000 - Information security management systems - Overview and vocabulary
The standard that enumerates detailed information security controls and provides implementation guidance is ISO/IEC 27002 (Code of practice for information security controls). It complements ISO/IEC 27001 by describing the objectives and recommended controls organizations may adopt to meet confidentiality, integrity, and availability requirements. ISO/IEC 27000 supplies only terminology and an overview, ISO/IEC 27001 specifies high-level management system requirements, and ISO/IEC 27005 focuses on risk management rather than listing specific security controls.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the purpose of ISO/IEC 27002 in information security?
Open an interactive chat with Bash
How does ISO/IEC 27002 complement ISO/IEC 27001?
Open an interactive chat with Bash
What is the difference between ISO/IEC 27002 and ISO/IEC 27005?
Open an interactive chat with Bash
What is ISO/IEC 27002 and why is it important?
Open an interactive chat with Bash
How does ISO/IEC 27002 differ from ISO/IEC 27001?
Open an interactive chat with Bash
What role does ISO/IEC 27005 play in information security risk management?
Open an interactive chat with Bash
ISC2 Governance, Risk and Compliance (CGRC)
Scope of the System
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .