ISO/IEC 27002:2013

Buy this standard

Abstract Preview

ISO/IEC 27002:2013 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).

It is designed to be used by organizations that intend to:

select controls within the process of implementing an Information Security Management System based on ISO/IEC 27001;
implement commonly accepted information security controls;
develop their own information security management guidelines.

General information ^

Status : Published

Publication date : 2013-10
Edition : 2

Number of pages : 80
Technical Committee
:
ISO/IEC JTC 1/SC 27

Information security, cybersecurity and privacy protection
ICS :

35.030

IT Security

Buy this standard

	Format	Language
std 1 178	PDF + Color PDF + ePub
std 2 178	PDF + ePub
std 3 214	PDF + ePub + Redline
std 4 178	Paper

CHF178

Life cycle

A standard is reviewed every 5 years

Revisions / Corrigenda

Previously
ISO/IEC 27002:2005
Now under review
ISO/IEC 27002:2013
Corrigenda/Amendments
ISO/IEC 27002:2013/Cor 1:2014
ISO/IEC 27002:2013/Cor 2:2015
Will be replaced by
ISO/IEC WD 27002

News

Close up of the hands of a woman typing on a red lit laptop keyboard.

By Clare Naden on 4 February 2019

Stronger data protection with updated guidelines on assessing information security controls

Software attacks, theft of intellectual property or sabotage are just some of the many information security risks that organizations face. And the consequences can be huge. Most organizations have controls in place to protect them, but how can we ensure those controls are enough? The international reference...

By Barnaby Lewis on 1 March 2018

ISO/IEC 27000 – key International Standard for information security revised

2018 may only have just begun, but it looks like a big year for information security. With questions being raised about the security of micro-processors, and major cyber security initiatives such as the EU’s General Data Protection Regulation brought into effect this year, a new edition of ISO/IEC 27000...

By Maria Lazarte on 5 September 2016

Are we safe in the Internet of Things?

Suppose a criminal were using your nanny cam to keep an eye on your house. Or your refrigerator sent out spam e-mails on your behalf to people you don’t even know. Now imagine someone hacked into your toaster and got access to your entire network. As smart products proliferate with the Internet of Things,...

By Elizabeth Gasiorowski-Denis on 6 January 2015

Trust and confidence in cloud privacy

The use of cloud computing is soaring, and by 2016 this growth will increase to become the bulk of new IT spend, according to Gartner, Inc. But as more and more information on individuals and companies is placed on the cloud, concerns are being raised about just how safe an environment it is.

By Katie Bird on 4 October 2013

Are you prepared for information security breaches? New ISO/IEC 27001 can help

The revised version of the popular information security management system standard ISO/IEC 27001 is now available. The standard helps companies secure their information assets – vital in today's world where the number and sophistication of cyber-attacks is on the rise.

Got a question?

Check out our FAQs

Customer care

+41 22 749 08 88

customerservice@iso.org

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

Buy this standard

Abstract Preview

General information ^

Buy this standard

People also bought

ISO/IEC 27000:2018

Information technology

ISO/IEC 27001:2013

Information technology

ISO/IEC 27005:2018

Information technology

Life cycle

Revisions / Corrigenda

Stronger data protection with updated guidelines on assessing information security controls

ISO/IEC 27000 – key International Standard for information security revised

Are we safe in the Internet of Things?

Trust and confidence in cloud privacy

Are you prepared for information security breaches? New ISO/IEC 27001 can help

ISO/IEC 27001 Information security management

Got a question?

Keep up to date with ISO

Abstract Preview

General information 

Buy this standard

People also bought

Life cycle

Revisions / Corrigenda

This may also interest you

News

Pages

Got a question?

Keep up to date with ISO

General information ^