Reaffirmed 2022

NATIONAL FOREWORD

This Indian Standard (First Revision) which is identical with ISO/IEC 27004 : 2016 ‘Information technology — Security techniques — Information security management — Monitoring measurement, analysis and evaluation’ issued by the International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) jointly was adopted by the Bureau of Indian Standards on the recommendations of the Information Systems Security and Biometrics Sectional Committee and approval of the Electronics and Information Technology Division Council.

This standard was originally published in 2012 and was identical with ISO/IEC 27004 : 2009 and has now been taken up for revision to align it with the latest version of ISO/IEC 27004.

The text of ISO/IEC Standard has been approved as suitable for publication as an Indian Standard without deviations. Certain conventions are however not identical to those used in Indian Standards. Attention is particularly drawn to the following:

a) Wherever the words ‘International Standard’ appear referring to this standard, they should be read as ‘Indian Standard’.

b) Comma (,) has been used as a decimal marker while in Indian Standards, the current practice is to use a point (.) as the decimal marker.