ISO/IEC 27000:2012

Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary

The electronic version of this International Standard can be downloaded from the ISO/IEC Information Technology Task Force (ITTF) web site

ISO/IEC 27000:2012 describes the overview and the vocabulary of information security management systems, which form the subject of the ISMS family of standards, and defines related terms and definitions.

ISO/IEC 27000:2012 is applicable to all types and sizes of organisation (e.g. commercial enterprises, government agencies, not-for-profit organisations).


General information

  • Current status : Withdrawn
    Publication date : 2012-12
  • Edition : 2
    Number of pages :
  • :
    ISO/IEC JTC 1/SC 27
    IT Security techniques
  • 01.040.35
    Information technology (Vocabularies)
    03.100.70
    Management systems
    35.030
    IT Security

Got a question?

Check out our FAQs


Customer care
+41 22 749 08 88

Opening hours: 09:00-12:00, 14:00-17:00 (UTC+1)

You may be interested in:

By Sandrine Tranchard on
Additional support to financial services thanks to ISO/IEC
A new ISO/IEC technical report aims to provide additional support to the financial industry to set up an appropriate information security management system for the provisioning of their financial services while giving more confidence to their customers.

Keep up to date with ISO

Sign up to our newsletter for the latest news, views and product information