Development of the Information Security Management System Standard for Public Sector Organisations in Estonia

Mari Seeba, Raimundas Matulevičius, Ilmar Toom
2021 Business Information Systems  
Standardisation gives us a common understanding or processes to do something in a commonly accepted way. In information security management, it means to achieve the appropriate security level in the context of known and unknown risks. Each government's goal should be to provide digital services to its citizens with the acceptable level of confidentiality, integrity and availability. This study elicits the EU countries' requirements for information security management system (ISMS) standards and
more » ... provides the standards' comparison requirements. The Estonian case is an example to illustrate the method when choosing or developing the appropriate ISMS standard to public sector organisations.
doi:10.52825/bis.v1i.43 fatcat:267lomwk75d6zjzxsyd63okn2q