1. 1. International Organization for Standartization. (2013, October 01). ISO/IEC 27001. Information1. International Organization for Standartization. (2013, October 01). ISO/IEC 27001. Informationtechnology. Security techniques. Information security management systems. Requirements,available at: https://www.iso.org/standard/54534.html.

2. 2. International Organization for Standartization. (2013, October 01). ISO/IEC 27002. Informationtechnology.Security techniques. Code of practice for information security controls,available at: https://www.iso.org/standard/54533.html.

3. 3. International Organization for Standartization. (2011, June 10). ISO/IEC 27005. Informationtechnology.Security techniques. Information security risk management, availableat:https://www.iso.org/standard/56742.html.

4. 4. International Organization for Standartization. (2018, Febr. 15). ISO 31000. Risk management.Guidelines, available at: https://www.iso.org/standard/65694.html.

5. 5. International Organization for Standartization. (2009, November 27). IEC 31010. Risk management.5. International Organization for Standartization. (2009, November 27). IEC 31010. Risk management.Risk assessment techniques, available at: https://www.iso.org/standard/51073.html.