Question

Caroline has been asked to find a standard to guide her company’s choices in implementing information security management systems. She is looking for a standard that is international.
Which of the following would be the best choice for her?
A. ISO 27002
B. ISO 27017
C. NIST 800-12
D. NIST 800-14

Answer 1

Answer:

ISO 27002

Explanation:

The acronym ISO stand for The International Organization for Standardization. its a non governmental body that is responsible for setting standards guide internationally.

while NIST stand for National Institute of Standards and technology and it is also a body that is responsible for setting up standard guide in the US..

ISO 27002  is a standard code for implementing information security management systems. while  ISO 27017 is for cloud security.  NIST 800-12 is a general security and NIST 800-14 is for policy development. thus option A is correct.

Note :

All code preceded by ISO is from The International Organization for Standardization and are international standard. while those preceded by NIST is from National Institute of Standards and technology  and are not international standard.