ISO/IEC 27005:2018 is an international standard that provides guidelines for information security risk management. It supports the general concepts specified in ISO/IEC 27001 and is designed to assist the satisfactory implementation of information security based on a risk management approach.
If you want to download ISO/IEC 27005:2018 in Portuguese, you have a few options:
You can purchase the official standard from the ISO website. The price is CHF 198 (about USD 217) for the PDF version. You can choose the language option \"Portuguese\" before adding it to your cart.
You can download a free PDF version of the Brazilian adaptation of the standard, ABNT NBR ISO/IEC 27005:2019, from the DOKUMEN.PUB website. This version is identical to ISO/IEC 27005:2018, except for some editorial changes and references to Brazilian regulations.
You can download a free software tool that implements ISO/IEC 27005:2018, called ISO27005, from the SourceForge website. This tool is available in several languages, including Portuguese. It helps you to perform risk assessment and treatment according to the standard.
Whichever option you choose, make sure you follow the terms and conditions of use and respect the intellectual property rights of the authors.
Information security risk management is the process of identifying, analyzing, evaluating, and treating the risks that can compromise the organization's information security. It involves establishing the context, assessing the risks, treating the risks, monitoring and reviewing the risks, and communicating and consulting with stakeholders.
Information security risk management is essential for ensuring that the organization's information security objectives are aligned with its business objectives and that the organization can protect its information assets from threats and vulnerabilities. It also helps the organization to comply with legal and regulatory requirements and to improve its performance and reputation.
ISO/IEC 27005:2018 provides a framework and a methodology for information security risk management that can be applied to any type of organization and any type of information security risk. It is compatible with other standards in the ISO/IEC 27000 family, such as ISO/IEC 27001, which specifies the requirements for an information security management system (ISMS).
In conclusion, ISO/IEC 27005:2018 is a useful standard that provides guidelines for information security risk management. It can help organizations to identify and treat the risks that can affect their information security and to achieve their business goals. It can also help organizations to demonstrate their compliance and credibility in the field of information security. If you want to download ISO/IEC 27005:2018 in Portuguese, you can choose from the options mentioned above. 29c81ba772