ISO 27001:2013, Information Security Management System 

The ISO/IEC 27000-series also known as the 'ISMS Family of Standards' comprises information security standards published jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC).

The series provides best practice recommendations on information security management, risks and controls within the context of an overall information security management system (ISMS).

The series is deliberately broad in scope, covering more than just privacy, confidentiality and IT or technical security issues. It is applicable to organizations of all shapes and sizes. All organizations are encouraged to assess their information security risks, then implement appropriate information security controls according to their needs, using the guidance and suggestions where relevant. Given the dynamic nature of information security, the ISMS concept incorporates continuous feedback and improvement activities, summarized by Deming's 'plan-do-check-act' approach, that seek to address changes in the threats, vulnerabilities or impacts of information security incidents.

The ISO 27000 family contains a number of standards each focusing on different aspects of Information Security Management.

• ISO/IEC 27000 — Information security management systems — Overview and vocabulary
• ISO/IEC 27001 — Information security management systems — Requirements
• ISO/IEC 27002 — Code of practice for information security management
• ISO/IEC 27003 — Information security management system implementation guidance
• ISO/IEC 27004 — Information security management — Measurement
• ISO/IEC 27005 — Information security risk management

To Download ISO Standard Technical Proposals, You are requested to fill the form above. A download link will appear after submitting form . Please contact Global Solutions and Resource Management team for financial proposal. Thank you for visiting us.