ISO/IEC 27001:2013 Preview

Information technology -- Security techniques -- Information security management systems -- Requirements

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.


General information

  • Current status : Published
    Publication date : 2013-10
  • Edition : 2
    Number of pages : 23
  • :
    ISO/IEC JTC 1/SC 27
    IT Security techniques
  • 03.100.70
    Management systems
    35.030
    IT Security

Buy this standard

Format Language
PDF + Color PDF + ePub
PDF + ePub
PDF + ePub + Redline
Paper
  • CHF118

Got a question?

Check out our FAQs


Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

Related links

Modern network hub with blue patch cables
ISO/IEC 27001 Information security management
Ensure your organization's information is secure with this family of standards.

Life cycle

A standard is reviewed every 5 years



Revisions / Corrigenda

You may be interested in:

http://www.iso.org/standard/
By Maria Lazarte on
Are we safe in the Internet of Things?
Suppose a criminal were using your nanny cam to keep an eye on your house. Or your refrigerator sent out spam e-mails on your behalf to people you don’t even know. Now imagine someone hacked into your toaster and got access to your entire network. As smart products proliferate with the Internet of Things,...
http://www.iso.org/standard/
My take on Davos and the 4th industrial revolution
By Kevin McKinley, Acting ISO Secretary-General Walking the snowy streets of the small Swiss town of Davos, it’s impressive to know that 40 heads of state and 2 500 leaders from business and society are here to talk about some of the most important global challenges facing us today.
http://www.iso.org/standard/
By Maria Lazarte on
Security toolbox protects organizations from cyber-attacks
Cyber-attacks are among the greatest risks an organization can face. Having standards and systems in place to keep information safe has therefore never been more important than in today's digital world. This is why the ISO/IEC 27000 series on security techniques for information technology has been updated...
http://www.iso.org/standard/
By Clare Naden on
Keeping data safe - what's your back up?
Securely storing and protecting data requires a whole lot more than a simple back up. A new International standard for data storage security ensures your valuable information stays in safe hands.
http://www.iso.org/standard/
By Elizabeth Gasiorowski-Denis on
Trust and confidence in cloud privacy
The use of cloud computing is soaring, and by 2016 this growth will increase to become the bulk of new IT spend, according to Gartner, Inc. But as more and more information on individuals and companies is placed on the cloud, concerns are being raised about just how safe an environment it is.

Keep up to date with ISO

Sign up to our newsletter for the latest news, views and product information