Skip to Main Content
Cyber Essentials and Cyber Essentials Plus | Achieve certification first-time with IT Governance | Find out more
PAS 555 2013 Standard

PAS 555 2013 Standard

SKU: 4246
Publishers: BSI
Format: Hardcopy
Published: 20 May 2013
Availability: In Stock

PAS 555:2013 - Cyber Security Risk - Governance and Management - Specification Standard.

PAS 555:2013 is an outcomes-based, holistic approach to cyber security.

Price: £110.00

The PAS 555:2013 Standard

PAS 555 supplies a holistic framework for effective cyber security which not only considers the technical aspects, but also the related physical, cultural and behavioural aspects of an organisation’s approach to addressing cyber threats, including effective leadership and governance.

Through this approach, PAS 555 enables organisations to:

  • Focus investment in the most appropriate way, minimising potential losses and improving operational effectiveness and efficiency;
  • Develop organisational resilience by improving loss prevention and incident management;
  • Identify and mitigate cyber security risk throughout the organisation.

PAS 555 applies to the whole organisation and its supply chain, avoiding the dangers that can arise when the security measures fail to cover the whole of the business. It is an adaptable approach which can apply to any organisation, whatever its size or type, whether commercial, not-for-profit or public sector.

PAS 555’s flexibility allows an organisation to utilise its own defined processes or the adoption of other standards and management systems to achieve its intended cyber security ends. PAS 555 can be used alone, but is also compatible with many major security standards, such as ISO 20000-1, ISO 27001, ISO 22301 and ISO 31000.

Full contents

  • Introduction
  • Scope
  • Terms and definitions
  • Management structure
  • Commitment to a cyber security culture
  • Security context
  • Business architecture strategy
  • Capability development strategy
  • Supplier and partner strategy
  • Technology strategy
  • Business resilience
  • Compliance with legislation and other standards
  • Risk assessment
  • Protection and mitigation
  • Detection and response
  • Recovery
  • Compliance analysis and continual improvement
  • Annexes
  • Bibliography

Customer Reviews

This website uses cookies. View our cookie policy
WIN £100