SNIA Developer Conference September 15-17, 2025 | Santa Clara, CA
Abstract
The ISO/IEC 27040 (Information technology - Security techniques - Storage security) standard provides detailed technical guidance on controls and methods for securing storage systems and ecosystems. This whitepaper provides an overview of key security concepts as they relate to storage security and summarizes the security guidance in the standard as applied to storage management. It also provides additional SNIA guidance in developing a storage management security program to meet organizations’ particular needs.