ISO/IEC 27002:2013 Preview

Information technology -- Security techniques -- Code of practice for information security controls

ISO/IEC 27002:2013 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).

It is designed to be used by organizations that intend to:

select controls within the process of implementing an Information Security Management System based on ISO/IEC 27001;
implement commonly accepted information security controls;
develop their own information security management guidelines.

General information ^

Current status : Published

Publication date : 2013-10
Edition : 2

Number of pages : 80
Technical Committee
:
ISO/IEC JTC 1/SC 27

IT Security techniques
ICS :

03.100.70

Management systems

35.030

IT Security

Buy this standard

	Format	Language
std 1 178	PDF + Color PDF + ePub
std 2 178	PDF + ePub
std 3 214	PDF + ePub + Redline
std 4 178	Paper

CHF178

Got a question?

Check out our FAQs

Customer care

+41 22 749 08 88

customerservice@iso.org

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

Life cycle

A standard is reviewed every 5 years

Revisions / Corrigenda

Previously
ISO/IEC 27002:2005
Now
ISO/IEC 27002:2013
Corrigenda/Amendments
ISO/IEC 27002:2013/Cor 1:2014
ISO/IEC 27002:2013/Cor 2:2015

You may be interested in:

By Maria Lazarte on 5 September 2016

Are we safe in the Internet of Things?

Suppose a criminal were using your nanny cam to keep an eye on your house. Or your refrigerator sent out spam e-mails on your behalf to people you don’t even know. Now imagine someone hacked into your toaster and got access to your entire network. As smart products proliferate with the Internet of Things,...

By Elizabeth Gasiorowski-Denis on 6 January 2015

Trust and confidence in cloud privacy

The use of cloud computing is soaring, and by 2016 this growth will increase to become the bulk of new IT spend, according to Gartner, Inc. But as more and more information on individuals and companies is placed on the cloud, concerns are being raised about just how safe an environment it is.

By Katie Bird on 4 October 2013

Are you prepared for information security breaches? New ISO/IEC 27001 can help

The revised version of the popular information security management system standard ISO/IEC 27001 is now available. The standard helps companies secure their information assets – vital in today's world where the number and sophistication of cyber-attacks is on the rise.

Keep up to date with ISO

Sign up to our newsletter for the latest news, views and product information

ISO/IEC 27002:2013 Preview

Information technology -- Security techniques -- Code of practice for information security controls

General information ^

Buy this standard

Got a question?

Related links

ISO/IEC 27001 Information security management

Life cycle

Revisions / Corrigenda

You may be interested in:

Are we safe in the Internet of Things?

Trust and confidence in cloud privacy

Are you prepared for information security breaches? New ISO/IEC 27001 can help

Keep up to date with ISO

ISO/IEC 27002:2013 Preview

Information technology -- Security techniques -- Code of practice for information security controls

General information 

Buy this standard

Got a question?

Related links

Life cycle

Revisions / Corrigenda

You may be interested in:

Keep up to date with ISO

General information ^