International Standardization Council

Back to discussions
Expand all | Collapse all

Minutes from the ISC Meeting February 18th 2022

  • 1.  Minutes from the ISC Meeting February 18th 2022

    Posted Feb 18, 2022 01:50:00 PM
    Minutes from the ISC Meeting February 18th 2022

    Standards update:ISO/IEC 27028 and 27029 Guidelines for ISO/IEC 27002 attributes is being developed
    There may be an opportunity to influence the content with our metrics catalogue

    ISO/IEC 27002:2022 was released on the 16th. 27001AMD is out for ballot should be released by August depending on comments. Current IAF draft on transition indicates a 24 month process.

    ISO/IEC 15408 Security techniques - Evaluation criteria for IT security will become a four part std.
    ISO/IEC CD 27402.2 Cybersecurity - IoT security and privacy - Device baseline requirements and ISO/IEC FDIS 27400 Cybersecurity - IoT security and privacy - Guidelines are in process.

    27017 - No movement or information on its fate
    27018 - with the 27701 being updated to align with 27001, it is likely that 27018 will be dead or just used as guidance/reference. 

    22123-3: Waiting for parts 1 & 2. There is a SC38 meeting on Feb 22nd. DIS ballot expected in March.

    Research Lifecycle: It has been agreed with @John Yeoh that the ISC will be consulted on all research papers at the approval and execution stages so that we may consult on nomenclature as well as ISO references and association with the proper standards.

    New AI standard being developed. Eric will provide a package for review by the AI WG

    ISC Charter: Needs to be updated and published for 2022. The following objectives have been approved as a draft. John DiMaria will make the changes and provide the ISC with a link for comments and suggestions.

    • Coordinate all aspects of standardization efforts within CSA
    • Be more global friendly by bridging the gap existing in current global standardization efforts
    • Be involved as reviewers, authors or contributors to relevant research papers to ensure proper nomenclature and alignment with the international standards
    • Participate and influence standardization efforts worldwide represented under the CSA banner
    • Increase involvement with a multi-avenue information flow between ISC and other respective WGs with respect to standardization efforts
    • OCF
    • CCM
    Other areas of involvement in addition to ISO/IEC SC 27 and SC 38 (including but not limited to):
    • IEEE
    • ENISA
    • NIST
    • AICPA
    • The German Federal Office for Information Security (BSI)
    • GSA/FedRAMP
    • CCCS -Canadian Centre for Cyber Security
    • IMDA Singapore
    • CMMC - DOD
    • OMG
    It was agreed that to be more global friendly we will move the ISC meetings to 7 AM PT, 9 AM CT, 3 PM GMT, 4 PM CET
    The change will begin starting with the April meeting.

    OMG is having a face to face meeting in Reston, VA at the Hyatt on March 23rd from 10 - 5 EST. While there will be a virtual option, OMG is encouraging F2F and will be waiving the registration fee for anyone that attends in person.

    Next meeting is scheduled for March 17th.
    Join Zoom Meeting
    https://zoom.us/j/794056882?pwd=RFNIRFZvVDNwdjJHc2lVZy9ydm5xdz09

    Meeting ID: 794 056 882
    Password: 178578

    One tap mobile
    +16699009128,,794056882# US (San Jose)
    +16465588656,,794056882# US (New York)

    Dial by your location
    +1 669 900 9128 US (San Jose)
    +1 646 558 8656 US (New York)
    Meeting ID: 794 056 882
    Find your local number: https://zoom.us/u/abrS5xIlrx




    ------------------------------
    JOHN DIMARIA
    ME
    CSA
    [email protected]
    ------------------------------