1 KiB
#iso27002/2022/EN
5.6 Contact with special interest groups
Control
The organization should establish and maintain contact with special interest groups or other specialist security forums and professional associations.
Purpose
To ensure appropriate flow of information takes place with respect to information security.
Guidance
Membership of special interest groups or forums should be considered as a means to:
a) improve knowledge about best practices and stay up to date with relevant security information;
b) ensure the understanding of the information security environment is current;
c) receive early warnings of alerts, advisories and patches pertaining to attacks and vulnerabilities;
d) gain access to specialist information security advice;
e) share and exchange information about new technologies, products, services, threats or vulnerabilities;
f) provide suitable liaison points when dealing with information security incidents (see 5.24 to 5.28).
Other information
No other information.