EN ISO 27380:2011 and EN ISO 27384:2011 are both important international standards that are relevant to the management and preservation of electronic records and information systems. EN ISO 27380:2011 is a professional technical standard that focuses on the principles and functional requirements for software used in electronic records management systems (ERMS). It aims to ensure the long-term preservation of electronic records and maintain their integrity, authenticity, and reliability.
On the other hand, EN ISO 27384:2011 is a comprehensive international standard that specifies the requirements and guidelines for the design, implementation, and maintenance of information systems in organizations. It aims to provide a framework for managing information security risks effectively and protect information assets from various threats and vulnerabilities.
EN ISO 27380:2011 is based on a risk-based approach to information security management, which encourages organizations to identify potential risks and implement appropriate controls to mitigate those risks. It also emphasizes the importance of aligning information security measures with the organization's overall business objectives and priorities.
EN ISO 27384:2011 provides a framework for managing information security risks and protect information assets from various threats and vulnerabilities. It also encourages organizations to adopt a risk-based approach to information security management, which ensures that information security measures are aligned with the organization's overall business objectives and priorities.
In conclusion, EN ISO 27380:2011 and EN ISO 27384:2011 are both important international standards that are relevant to the management and preservation of electronic records and information systems. Both standards provide guidelines and requirements for the storage and management of electronic records and the design, implementation, and maintenance of information systems in organizations.