Im Rahmen der ISO 27000er-Familie ist aktuell der Standard zur Information security governance neu erschienen:

“ISO/IEC 27014:2013 provides guidance on concepts and principles for the governance of information security, by which organizations can evaluate, direct, monitor and communicate the information security related activities within the organization.”

Der Standard kann bei der ISO bezogen werden.