CGSB/CSA Preface
This is the first edition of CAN/CGSB/CSA-ISO 19650-5, Organization and digitization of information about buildings and civil engineering works, including building information modelling (BIM) — Information management using building information modelling — Part 5: Security-minded approach to information management, which is an adoption without modification of the identically titled ISO (International Organization for Standardization) Standard 19650-5 (first edition, 2020-06).
For brevity, this Standard will be referred to as CAN/CGSB/CSA-ISO 19650-5 throughout.
This Standard was reviewed for Canadian adoption by the CGSB/CSA Joint Technical Committee on the Organization and Digitization of Information for the Built Environment, under the jurisdiction of the Canadian General Standards Board (CGSB) and the CSA Strategic Steering Committee on Construction and Civil Infrastructure, and has been formally approved by the Joint Technical Committee.
This Standard has been developed in compliance with Standards Council of Canada requirements for National Standards of Canada. It has been published as a National Standard of Canada by CGSB and CSA Group.
Scope
This document specifies the principles and requirements for security-minded information management at a stage of maturity described as building information modelling (BIM) according to the ISO 19650 series, and as defined in ISO 19650-1, as well as the security-minded management of sensitive information that is obtained, created, processed and stored as part of, or in relation to, any other initiative, project, asset, product or service.
It addresses the steps required to create and cultivate an appropriate and proportionate security mindset and culture across organizations with access to sensitive information, including the need to monitor and audit compliance.
The approach outlined is applicable throughout the lifecycle of an initiative, project, asset, product or service, whether planned or existing, where sensitive information is obtained, created, processed and/or stored.
This document is intended for use by any organization involved in the use of information management and technologies in the creation, design, construction, manufacture, operation, management, modification, improvement, demolition and/or recycling of assets or products, as well as the provision of services, within the built environment. It will also be of interest and relevance to those organizations wishing to protect their commercial information, personal information and intellectual property.