Access Rights Management According to ISO 27001 and the Baseline IT Protection (“IT-Grundschutz”) of the Federal Office for Information Security

Request free whitepaper now!

The ISO 27000 family of standards contains the management standard ISO 27001, which is a guideline for establishing IT security management system (ISMS). It demands that IT security be planned, implemented, monitored, reviewed and continuously improved.

This whitepaper outlines the connection between the controls listed in the ISO 27002 and the corresponding modules, measures and risks outlined in the baseline IT protection concerning the fields IT users and authorizations. It then proceeds to examine more closely the individual segments and demands outlined in the baseline IT protection (“IT-Grundschutz”) and analyzes to what extend the standard solution “tenfold” can be used to implement these demands.