Ads
related to: what is iso iec 27001- Plans and Pricing
Find the plan that's right for you
Compare plan features
- Customer story: Newfront
Newfront got their SOC 2 50% faster
How Newfront saves with Vanta
- Features and Capabilities
350+ integrations, 30+ frameworks
Automate compliance and workflows
- 9K+ Customers Trust Vanta
Hear from top companies using Vanta
Modern Health saves 100+ hrs/year
- Trust Management Platform
Your partner to get compliant—fast
Establish and maintain trust
- Book a Demo Today
Connect with our team
See what Vanta can do for you
- Plans and Pricing
Search results
Results From The WOW.Com Content Network
ISO/IEC 27001 is an international standard to manage information security. The standard was originally published jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) in 2005, [ 1 ] revised in 2013, [ 2 ] and again most recently in 2022. [ 3 ]
ISO/IEC 27013 — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1: brings together the management systems for information security and IT services. ISO/IEC 27014 — Governance of information security [ 11 ] : Mahncke assessed this standard in the context of Australian e-health.) [ 12 ]
At the center of the ISO/IEC 27000 series is ISO/IEC 27001, which specifies the requirements for establishing and maintaining an ISMS. [8] The standard emphasizes a risk-based approach to managing information security, encouraging organizations to identify, assess, and mitigate risks specific to their operational environment.
ISO/IEC 27001:2005 is designed to ensure the selection of adequate and proportionate security controls that protect information assets and give confidence to interested parties." A basic concept of security management is information security .
The ISO/IEC 27000 family represents some of the most well-known standards governing information security management and their ISMS is based on global expert opinion. They lay out the requirements for best "establishing, implementing, deploying, monitoring, reviewing, maintaining, updating, and improving information security management systems."
The ISO/IEC standard was revised in 2005, and renumbered ISO/IEC 27002 in 2007 to align with the other ISO/IEC 27000-series standards. It was revised again in 2013 and in 2022. [ 2 ] Later in 2015 the ISO/IEC 27017 was created from that standard in order to suggest additional security controls for the cloud which were not completely defined in ...
Ads
related to: what is iso iec 27001