Keeping an eye on information security
The standard for IS governance just updated.
This standard was last reviewed and confirmed in 2019. Therefore this version remains current.
Abstract Preview
ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.
General information
-
Status : PublishedPublication date : 2013-10
-
Edition : 2Number of pages : 23
-
Technical Committee:Information security, cybersecurity and privacy protection
-
- ICS :
-
IT Security
-
Management systems
Buy this standard
| Format | Language | |
|---|---|---|
| PDF + Color PDF + ePub | ||
| PDF + ePub | ||
| PDF + ePub + Redline | ||
| Paper | ||
- CHF118
People also bought
ISO/IEC 27000:2018
Information technologySecurity techniquesInformation security management systemsOverview and vocabularyISO/IEC 27002:2013
Information technologySecurity techniquesCode of practice for information security controlsISO/IEC 27005:2018
Information technologySecurity techniquesInformation security risk management
Life cycle
A standard is reviewed every 5 years
Revisions / Corrigenda
-
Previously
ISO/IEC 27001:2005
-
Now confirmed
ISO/IEC 27001:2013 -
Corrigenda/Amendments
ISO/IEC 27001:2013/Cor 1:2014
ISO/IEC 27001:2013/Cor 2:2015
This may also interest you
News
Keeping cyberspace safe for 30 years
At a time when more of us are connected and working remotely than ever before, it’s good to know that there are people like SC 27 keeping our online activities secure with ISO standards.
Guidance for information security management systems auditors just updated
Keeping sensitive company information and personal data safe and secure is not only essential for any business but a legal imperative. Many organizations do this with the help of an information security …
Tackling privacy information management head on: first International Standard just published
We are more connected than ever, bringing with it the joys, and risks, of our digital world. Cybersecurity is a growing concern, with attacks against business almost doubling over the last few years and …
Stronger data protection with updated guidelines on assessing information security controls
Software attacks, theft of intellectual property or sabotage are just some of the many information security risks that organizations face. And the consequences can be huge. Most organizations have controls …
Pages
ISO/IEC 27001 — Information security management
Providing security for any kind of digital information, the ISO/IEC 27000 family of standards is designed for any size of organization.
Got a question?
Check out our FAQs
Customer care
+41 22 749 08 88
Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)
Keep up to date with ISO
Sign up to our newsletter for the latest news, views and product information.