Abstract Preview

This document defines a process reference model (PRM) for the domain of information security management, which is meeting the criteria defined in ISO/IEC 33004 for process reference models (see Annex A). It is intended to guide users of ISO/IEC 27001 to:

— incorporate the process approach as described by ISO/IEC 27000:2018, 4.3, within the ISMS;

— be aligned to all the work done within other standards of the ISO/IEC 27000 family from the perspective of the operation of ISMS processes

— support users in the operation of an ISMS ? this document is complementing the requirements-oriented perspective of ISO/IEC 27003 with an operational, process-oriented point of view.


General information

  • Status :  Published
    Publication date : 2021-03
  • Edition : 1
    Number of pages : 43
  • :
    ISO/IEC JTC 1/SC 27
    Information security, cybersecurity and privacy protection
  • 35.030
    IT Security
    03.100.70
    Management systems

Buy this standard

Format Language
PDF + ePub
Paper
  • CHF158

Got a question?

Check out our FAQs

Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

Keep up to date with ISO

Sign up to our newsletter for the latest news, views and product information.