ISO 27799
The international standard EN ISO 27799 Medical computer science - Security management in health using ISO / IEC 27002 specifies the requirements for an information security management system in healthcare. She goes here as Scope specialization on the specifics in the healthcare system, which are not considered in the general gehalteneren standard series ISO 27000, and is in contrast to her mother's standard accented Must - instead of set criteria, particularly in terms of confidentiality of the data of persons treated.
The standard is published in Germany as DIN standard DIN EN ISO 27799.
Structure of the Standard
The standard is structured as follows
- Content
- Foreword
- Introduction
- Annex A ( informative) threats to the security of health information
- Annex B ( informative) tasks and related documents of the Information Security Management System