Cybersecurity Navigator Login

Informationstechnik - IT-Sicherheitsverfahren - Systemsicherheitstechnik - Capability Maturity Model® (SSE-CMM®) Information technology - Security techniques - Systems Security Engineering - Capability Maturity Model® (SSE-CMM®)

Informationstechnik - IT-Sicherheitsverfahren - Systemsicherheitstechnik - Capability Maturity Model® (SSE-CMM®)
Information technology - Security techniques - Systems Security Engineering - Capability Maturity Model® (SSE-CMM®)

Shortname ISO/IEC 21827:2008-10
Dokumentnummer 21827
Ausgabedatum 2008-10-00
Erwerb bei https://www.vde-verlag.de/iec-normen/215922/iso-iec-21827-2008.html
Internationales Gremium ISO/IEC JTC 1/SC 27
Thema Sicherheitsverfahren , Systemsicherheitstechnik
Sektor Informationstechnik und Telekommunikation
Branche Informationstechnik
Level of Abstraction 4

  • Einführungsbeitrag (short) EN:
    ISO/IEC 21827:2008 specifies the Systems Security Engineering - Capability Maturity Model® (SSE-CMM®), which describes the essential characteristics of an organization's security engineering process that must exist to ensure good security engineering. ISO/IEC 21827:2008 does not prescribe a particular process or sequence, but captures practices generally observed in industry. The model is a standard metric for security engineering practices covering the following: - the entire life cycle, including development, operation, maintenance and decommissioning activities; - the whole organization, including management, organizational and engineering activities; - concurrent interactions with other disciplines, such as system, software, hardware, human factors and test engineering; system management, operation and maintenance; - interactions with other organizations, including acquisition, system management, certification, accreditation and evaluation. The objective is to facilitate an increase of maturity of the security engineering processes within the organization. The SSE-CMM® is related to other CMMs which focus on different engineering disciplines and topic areas and can be used in combination or conjunction with them.
  • ISO/IEC 15504-2 (2003-10)

  • Volltextsuche

    Sektor

    Branche


    Ebene

    Bundesland


    Rechtsakt




    Saarland Saarland

    Branche: Informationstechnik
    Ergebnis 36

    Einzelne Vorschriften

    §§ 4-9; 13-15; 22-25




    Sachsen Sachsen

    Branche: Informationstechnik
    Ergebnis 37

    Einzelne Vorschriften

    §§ 4; 6-17; 20; 32-36




    Sachsen-Anhalt Sachsen-Anhalt

    Branche: Informationstechnik
    Ergebnis 38

    Einzelne Vorschriften

    §§ 4-8; 10-14; 16; 25-30a




    Sachsen-Anhalt Sachsen-Anhalt

    Branche: Informationstechnik
    Ergebnis 39

    Einzelne Vorschriften

    Punkte 6; 7.2.2; 8.2.2; 14.1.1; 14.1.2; 14a 4.2.1; 15.2.1; 25.1.3; 25.3; 25.3.4




    Schleswig-Holstein Schleswig-Holstein

    Branche: Informationstechnik
    Ergebnis 40

    Einzelne Vorschriften

    §§ 3-7; 12-16; 22-30; 34; 38; 40; 43; 47; 50; 51; 54-57