SCORE: Checklists & Step-by-Step Guides

ISO 17799

Status

Final: August 2003

Description

This 7799 checklist shall be used to audit Organisation's Information Technology Security standard. This checklist does not provide vendor specific security considerations but rather attempts to provide a generic checklist of security considerations to be used when auditing an organisation's Information Technology Security.

This checklist is not a replacement for any 7799 Standard. But this checklist can be used in conjunction with 7799 standard to review and evaluate IT security of the organisation.

References:

• 1. Information Security Management, Part2: Specification for Information security management systems AS/NZS 7799.2:2003 BS 7799.2:2002
• 2. Information Technology - Code of practice for Information Security Management AS/NZS ISO/IEC 17799:2001

Versions

• ISO 17799 Checklist 1.1 (DOC)
• ISO 17799 Checklist 1.1 (PDF)

Lead

Val Thiagarajan is the team leader for the ISO 17799 Checklist. If you have any comments or questions please email Val at: 7799@sans.org

• Checklists & Step-by-Step Guides
  • ASP 1.1
  • APT Incident Handling
  • Cloudera Security Hardening Checklist
  • Firewall (Gen) 1.0
  • Handhelds 2.1
  • HP-UX 1.0
  • Installing RedHat/CentOS
  • iOS Platform Security
  • ISO 17799:2005
  • ISO 17799 1.1
  • Linksys Broadband Routers 1.0
  • Mac OS X 1.0
  • Malicious File Investigation Procedures
  • Mobile Device Checklist
  • NISPOM 1.0
  • Oracle Database 3.1
  • Linux 2.0
  • Rootkits Investigation Procedures
  • Unix (Gen) 1.0
  • Web Applications 1.0
  • Wireless Checklists 1.0
  • Safety Walkthrough Checklist 1.0
  • System Security Plan