ISO/IEC 27102:2019
p
ISO/IEC 27102:2019
72436

Abstract

 Preview

This document provides guidelines when considering purchasing cyber-insurance as a risk treatment option to manage the impact of a cyber-incident within the organization's information security risk management framework.

This document gives guidelines for:

a) considering the purchase of cyber-insurance as a risk treatment option to share cyber-risks;

b) leveraging cyber-insurance to assist manage the impact of a cyber-incident;

c) sharing of data and information between the insured and an insurer to support underwriting, monitoring and claims activities associated with a cyber-insurance policy;

d) leveraging an information security management system when sharing relevant data and information with an insurer.

This document is applicable to organizations of all types, sizes and nature to assist in the planning and purchase of cyber-insurance by the organization.


General information 

  •  :  Published
     : 2019-08
  •  : 1
     : 18
  •  : ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection
  •  :
    35.030 IT Security

Buy this standard

en
Format Language
std 1 92 PDF + ePub
std 2 92 Paper
  • CHF92

Got a question?

Check out our FAQs

Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

Keep up to date with ISO

Sign up to our newsletter for the latest news, views and product information.