The focus of ISO/IEC 27032 is to address Internet security issues and provide guidance for addressing common Internet security threats, such as social engineering attacks, zero-day attacks, privacy attacks, hacking and the proliferation of malicious software (malware), spyware and other potentially unwanted software. This document is intended for all organizations that use the Internet. The guidance focuses on providing industry best practices, and broad consumer and employee education to assist interested parties in playing an active role to address the Internet security challenges.
ISO/IEC 27032 provides:
— an explanation of the relationship between Internet security, web security, network security and cybersecurity,
— an overview of Internet security,
— identification of interested parties and a description of their roles in Internet security,
— high-level guidance for addressing common Internet security issues.