Skip to content
IRC-Coding IRC-Coding
ISO Standards ISO 25010 ISO 9241 ISO 27001 GDPR ITIL Software Quality IT Security

IT Standards Explained: ISO 25010, 9241, 27001, GDPR & ITIL

Essential IT standards for exams: ISO 25010, ISO 9241, ISO 27001, GDPR & ITIL. Relevance, applications & exam questions.

S

schutzgeist

2 min read

Software Standards & Norms – ISO 25010, 9241, 27001, GDPR & ITIL

Internet Relay Chat und Linux-FAQs

IRC-Mania Die Seite rund um Sicherheit und Programmierung

Internet, Sicherheit , Internet Relay Chat

This article is a definition of terms for important IT standards – including exam questions and tags.

In a Nutshell

Standards and norms form the foundation for high-quality software development, secure IT systems, and professional project management.

Compact Technical Description

1. Software Development & Quality

ISO/IEC 25010 is the system and software quality model that replaces ISO 9126. It defines 8 quality characteristics: functionality, reliability, usability, performance efficiency, maintainability, compatibility, security, and portability. Absolutely central to software quality and test objectives.

ISO/IEC/IEEE 12207 describes software lifecycle processes from quotation to development, operation, and maintenance. Foundation for many process models.

DIN EN 301 549 defines accessibility requirements for IT products, increasingly important for inclusive software development.

2. Usability & User Experience

DIN EN ISO 9241 is the series on human-system interaction. Most important part: Part 110 with the 7 dialogue principles (task appropriateness, self-descriptiveness, controllability, conformity with user expectations, error tolerance, individualizability, learnability). Extremely relevant for exams!

DIN EN ISO 9241-210 describes the user-centered design process: understand context, specify requirements, design, evaluation.

3. IT Security & Data Protection

ISO/IEC 27001 is the standard for information security management systems (ISMS). Shows how to establish, implement, and improve security processes.

BSI Grundschutz is the IT basic protection compendium of the BSI with practical IT security measures.

BDSG/GDPR are the most important laws! The GDPR and BDSG must be known in substance: privacy by design, right to information, deletion, data processing, technical and organizational measures.

4. Project Management & Processes

ISO 9001 defines quality management systems with the continuous improvement process (PDCA cycle: Plan-Do-Check-Act).

V-Model XT is a process model for IT projects, particularly widespread in the public sector.

ITIL (ISO/IEC 20000) is the framework for IT service management with processes such as incident, problem, and change management.

Exam-Relevant Key Points

  • ISO 25010: 8 quality characteristics for software quality and test objectives
  • ISO 9241-110: 7 dialogue principles must be memorized
  • ISO 27001: ISMS establishment and security processes
  • GDPR: privacy by design, rights of data subjects, data processing
  • ITIL: service management processes (incident, problem, change)
  • Standards demonstrate structured approach and sound knowledge
  • Knowledge of standards is a plus in expert discussions and projects

Core Components

  1. Quality characteristics according to ISO 25010
  2. Dialogue principles according to ISO 9241-110
  3. ISMS establishment according to ISO 27001
  4. Data protection principles of the GDPR
  5. ITIL service management processes
  6. PDCA cycle according to ISO 9001
  7. V-Model XT phases and activities
  8. Accessibility criteria according to DIN EN 301 549
  9. Lifecycle processes according to ISO 12207
  10. Technical and organizational measures (TOMs)

Practical Example

Example: Quality objectives for a web application according to ISO 25010:
- Functionality: user registration, login, data search
- Reliability: 99.9% availability, error handling
- Usability: ISO 9241-110 dialogue principles implemented
- Performance efficiency: load time < 2 seconds
- Maintainability: modular architecture, documented APIs
- Compatibility: Chrome, Firefox, Safari, mobile browsers
- Security: ISO 27001 ISMS, GDPR compliance
- Portability: Docker containers, cloud deployment
IRC-Security.de - Cybersecurity Portal

IRC-Security.de

Cybersecurity Artikel und Tutorials

Advantages and Disadvantages

Advantages

  • Structured approach
  • Traceable quality
  • Legal certainty through standards compliance
  • Improved processes and products

Disadvantages

  • Training effort required
  • Certification costs
  • Administrative overhead
  • Flexibility may be restricted

Typical Exam Questions (with Short Answer)

  1. 8 quality characteristics according to ISO 25010? Functionality, reliability, usability, performance efficiency, maintainability, compatibility, security, portability.
  2. 7 dialogue principles according to ISO 9241-110? Task appropriateness, self-descriptiveness, controllability, conformity with user expectations, error tolerance, individualizability, learnability.
  3. ISO 27001 purpose? Establishment of information security management systems.
  4. GDPR core principles? Privacy by design, lawfulness, purpose limitation, data minimization, accuracy, storage limitation.
  5. ITIL main processes? Incident management, problem management, change management, service desk.
  6. PDCA cycle according to ISO 9001? Plan-Do-Check-Act: continuous improvement process.
  7. DIN EN 301 549 purpose? Accessibility requirements for IT products.
  8. ISO 12207 significance? Software lifecycle processes from development to maintenance.

Most Important Sources

  1. https://www.iso.org/standard/64239.html (ISO 25010)
  2. https://www.iso.org/standard/63078.html (ISO 9241-110)
  3. https://www.iso.org/standard/54534.html (ISO 27001)
  4. https://dsgvo-gesetz.de/ (GDPR)
  5. https://www.itil.org/ (ITIL)
VPS Hosting Angebot

Premium VPS Hosting

Schnelle und sichere VPS Server
Back to Blog
Share:

Related Posts