ISO 17799 has two parts. The first part is an implementation guide with guidelines on how to build a comprehensive information security infrastructure and the second part is an auditing guide based on requirements that must be met for an organization to be deemed compliant with ISO 17799. What are the ISO
17799 domains?
Each correct answer represents a complete solution. Choose all that apply.
A.
Information security policy for the organization
B.
Personnel security
C.
Business continuity management
D.
System architecture management
E.
System development and maintenance