Cyber security risk - Governance and management - Specification (PAS 555:2013)

Information technology pervades every aspect of modern human life. We now rely heavily on cyberspace for our business and personal transactions. While this connectivity has positively changed the way organizations operate, the inevitable downside is the threat of cyber attack.

Threats to an organization’s cyber security present a critical challenge in terms of scale, complexity and impact – with business assets such as corporate and customer data, intellectual property, and brand and reputation at risk. It is crucial that an organization understands and manages its exposure to cyber security threats.

That’s why we’ve produced PAS 555:2013 Cyber security risk – Governance and management – Specification.

PAS 555 uniquely uses an outcomes-based approach to ensure enterprise confidence.

A business-led, holistic approach to cyber security

The requirements of this PAS define the overall outcomes of effective cyber security. Importantly, it considers not only the technical aspects of cyber security, but also the physical, cultural and behavioural aspects, alongside effective leadership and governance.