Abstract. The author overviews the international standards developed by SC 27 “IT Security techniques” of the ISO/IEC Joint technical committee 1 “Information technology”. The standards include cryptographic mechanisms, evaluation and testing of products and information systems, countermeasures and security services. Both published standards and those under development are considered.

Keywords: business continuity, confidentiality, information security incident, functional services, key management, security assessment.