a new ISO/IEC standard tells how: 27013
The relationship between information security and service management is so close that many organizations already recognize the benefits of adopting both standards: ISO/IEC 27001 for information security and ISO/IEC 20000-1 for service management.
“Both ISO/IEC 27001 for information security and ISO/IEC 20000-1 for service management address very similar processes and activities, including the important principle of continual improvement” said Edward Humphreys, Convenor of the information security management systems working group (ISO/IEC JTC 1/SC 27). “A number of advantages can be gained by implementing an integrated management system which takes into account not only the services provided, but also the protection of information assets.”
to read rest of article click here