INCITS/ISO/IEC 27001:2013 [2014]

Information technology - Security techniques - Information security management systems - Requirements

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.

InterNational Committee for Information Technology Standards [incits]

Others Also Bought
Information technology - Security techniques - Code of practice for information security controls
Security and resilience - Business continuity management systems - Requirements
Security techniques - Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management - Requirements ...
Document History
Included in Packages
This standard is not included in any packages.