ISO/IEC 27000:2014

Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary

The electronic version of this International Standard can be downloaded from the ISO/IEC Information Technology Task Force (ITTF) web site

ISO/IEC 27000:2014 provides the overview of information security management systems (ISMS), and terms and definitions commonly used in the ISMS family of standards.

It is applicable to all types and sizes of organization (e.g. commercial enterprises, government agencies, not-for-profit organizations).


General information

Got a question?

Check out our FAQs


Customer care
+41 22 749 08 88

Opening hours:
Monday to Friday - 09:00-12:00, 14:00-17:00 (UTC+1)

You may be interested in:

By Maria Lazarte on
Security toolbox protects organizations from cyber-attacks
Cyber-attacks are among the greatest risks an organization can face. Having standards and systems in place to keep information safe has therefore never been more important than in today's digital world. This is why the ISO/IEC 27000 series on security techniques for information technology has been updated...
Get more from your investments with our new IT management collection
Looking to get maximum value from your IT investments? Or to protect your information and IT services against risks? It might just be easier than you think with our much anticipated collection selected for CIO's, IT managers and those who work with them.

Keep up to date with ISO

Sign up to our newsletter for the latest news, views and product information