BS ISO IEC 27010:2015 offers additional guidance beyond what is provided in the ISO/IEC 27000 series of standards, focusing on the implementation of information security management within information-sharing communities.
The standard outlines controls and specific guidance for initiating, executing, sustaining, and enhancing information security within cross-organizational and cross-sector communications. It provides direction and fundamental principles on how to fulfill the specified requirements through the use of established messaging systems and other technical approaches.
This standard is applicable to all forms of sensitive information exchange and sharing, whether public or private, at a national or international level, within the same industry or market sector, or across different sectors. It is particularly relevant to information exchanges and sharing that pertain to the provision, maintenance, and protection of an organization’s or a nation-state’s critical infrastructure. Its purpose is to facilitate the establishment of trust during the exchange and sharing of sensitive information, thereby fostering the international expansion of information-sharing communities.
