Skip to content
Home / Function (NIST CSF 2.0) / GV - Govern / OC - Org. Context

ISO/IEC 27000:2018 Information technology — Security techniques — Information security management systems — Overview and vocabulary

This document focuses on:

The ISO 27000 standard provides an overview and introduction to the ISO 27000 family, which is a series of international standards focused on information security management systems (ISMS). These standards guide organizations in establishing, implementing, maintaining, and continually improving their ISMS to protect information assets against threats such as unauthorized access, data breaches, and cyberattacks. ISO 27000 explains the fundamental concepts, principles, and terminology of information security, emphasizing the importance of managing risks to confidentiality, integrity, and availability of data. It sets the foundation for other standards in the series, such as ISO 27001 (requirements for ISMS) and ISO 27002 (guidance on security controls), and helps organizations of any size or sector systematically manage sensitive information and comply with legal and regulatory requirements.


Publication's URL

https://www.iso.org/standard/73906.html

Additional documents on this topic



How would you rate this document ?

Click on a star to rate it!

What do you think of this document?

Your email address will not be published. Required fields are marked *