BS ISO/IEC 27000:2009 Information technology. Security techniques. Information security management systems. Overview and vocabulary
About information security management systems (ISMS)
Using the information security management system (ISMS) family of standards, organizations can develop and implement a framework for managing the security of their information assets and prepare for an independent assessment of their ISMS applied to the protection of information, such as financial information, intellectual property, and employee details, or information entrusted to them by customers or third parties.
What is BS ISO/IEC 27000?
BS ISO/IEC 27000 provides an overview of ISMS that form the subject of the ISMS family of standards. BS ISO/IEC 27000 defines the related terms.
BS ISO/IEC 27000 aims to provide the terms and definitions, and an introduction to the ISMS family of standards that:
Define requirements for an ISMS and for those certifying such systems
Provide direct support, detailed guidance and/or interpretation for the overall Plan-Do-Check-Act (PDCA) processes and requirements
Address sector-specific guidelines for ISMS
Address conformity assessment for ISMS.
BS ISO/IEC 27000 applies to all types of organization (e.g. commercial enterprises, government agencies, non-profit organizations). It can be used as an aid to understanding the fundamentals, principles and concepts, to improve protection of their information assets. Organizations implementing an ISMS as part of their risk strategy will find it particularly significant.
Today, an organization's information assets are dependent upon information and communications technology. The technology assists in facilitating the creation, processing, storing, transmitting, protection and destruction of information.
As the extent of the interconnected...
BS ISO/IEC 27000:2009 history
2016BS ISO/IEC 27000:2016 Information technology. Security techniques. Information security management systems. Overview and vocabulary
2014BS ISO/IEC 27000:2014 Information technology. Security techniques. Information security management systems. Overview and vocabulary
2013BS ISO/IEC 27000:2012 Information technology. Security techniques. Information security management systems. Overview and vocabulary
2009BS ISO/IEC 27000:2009 Information technology. Security techniques. Information security management systems. Overview and vocabulary