147:(IEC) in 2005, revised in 2013, and again most recently in 2022. There are also numerous recognized national variants of the standard. It details requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS) โ the aim of which is to help organizations make the information assets they hold more secure. Organizations that meet the standard's requirements can choose to be certified by an accredited certification body following successful completion of an
2941:
36:
314:, independently testing the ISMS against the requirements specified in ISO/IEC 27001. The auditors will seek evidence to confirm that the management system has been properly designed and implemented, and is in fact in operation (for example by confirming that a security committee or similar management body meets regularly to oversee the ISMS). Certification audits are usually conducted by
304:
if their knowledge of the standard's requirements is at an acceptable level. They will decide if the organization is ready for the Stage 2 audit. They will also discuss any issues or specific situations prior to the Stage 2 audit and define the auditplan including subjects and who is needed on what day.
303:
is a preliminary review of the ISMS. It includes checks for the existence and completeness of key documentation, such as the organization's information security policy, Statement of
Applicability (SoA), and Risk Treatment Plan (RTP). The auditor will have a brief meeting with some employees to review
245:
The second part of BS7799 was first published by BSI in 1999, known as BS 7799 Part 2, titled "Information
Security Management Systems - Specification with guidance for use." BS 7799-2 focused on how to implement an Information security management system (ISMS), referring to the information security
237:
The first part, containing the best practices for information security management, was revised in 1998; after a lengthy discussion in the worldwide standards bodies, it was eventually adopted by ISO as ISO/IEC 17799, "Information
Technology - Code of practice for information security management." in
199:
What controls will be tested as part of certification to ISO/IEC 27001 is dependent on the certification auditor. This can include any controls that the organisation has deemed to be within the scope of the ISMS and this testing can be to any depth or extent as assessed by the auditor as needed to
203:
Management determines the scope of the ISMS for certification purposes and may limit it to, say, a single business unit or location. The ISO/IEC 27001 certificate does not necessarily mean the remainder of the organization, outside the scoped area, has an adequate approach to information security
180:
specifically; leaving non-IT information assets (such as paperwork and proprietary knowledge) less protected on the whole. Moreover, business continuity planning and physical security may be managed quite independently of IT or information security while Human
Resources practices may make little
324:
involves follow-up reviews or audits to confirm that the organization remains in compliance with the standard. Certification maintenance requires periodic re-assessment audits to confirm that the ISMS continues to operate as specified and intended. These should happen at least annually but (by
292:
In some countries, the bodies that verify conformity of management systems to specified standards are called "certification bodies", while in others they are commonly referred to as "registration bodies", "assessment and registration bodies", "certification/ registration bodies", and sometimes
267:
The latest revision of the standard ISO/IEC 27001:2022 outlines a comprehensive set of security controls in Annex A, categorized into 4 domains. These controls address various aspects of information security, such as access control, cryptography, physical security, and incident management.
263:
ISO/IEC 27001 emphasizes the importance of identifying and assessing information security risks. Organizations are required to implement risk management processes to identify potential threats, evaluate their impact, and develop appropriate mitigation strategies.
171:
system (ISMS), controls tend to be somewhat disorganized and disjointed, having been implemented often as point solutions to specific situations or simply as a matter of convention. Security controls in operation typically address certain aspects of
271:
ISO/IEC 27001 promotes a culture of continual improvement in information security practices. Regular monitoring, performance evaluation, and periodic reviews help organizations adapt to evolving threats and enhance their ISMS effectiveness.
191:
Design and implement a coherent and comprehensive suite of information security controls and/or other forms of risk treatment (such as risk avoidance or risk transfer) to address those risks that are deemed unacceptable;
288:
against any of the recognized national variants of ISO/IEC 27001 (e.g. JIS Q 27001, the
Japanese version) by an accredited certification body is functionally equivalent to certification against ISO/IEC 27001 itself.
2267:
296:
The ISO/IEC 27001 certification, like other ISO management system certifications, usually involves a three-stage external audit process defined by ISO/IEC 17021 and ISO/IEC 27006 standards:
549:
Ferreira, Lindemberg Naffah; da Silva
Constante, Silvana Maria; de Moraes Zebral, Alessandro Marcio; Braga, Rogerio Zupo; Alvarenga, Helenice; Ferreira, Soraya Naffah (October 2013).
380:
195:
Adopt an overarching management process to ensure that the information security controls continue to meet the organization's information security needs on an ongoing basis.
246:
management structure and controls identified in BS 7799-2. This later became ISO/IEC 27001:2005. BS 7799 Part 2 was adopted by ISO as ISO/IEC 27001 in
November 2005.
1779:
211:
provide additional guidance on certain aspects of designing, implementing and operating an ISMS, for example on information security risk management (
231:
1774:
1996:
1784:
1279:
657:
140:
519:
1501:
2471:
2576:
2496:
2287:
2282:
2128:
144:
2973:
2294:
188:
Systematically examine the organization's information security risks, taking account of the threats, vulnerabilities, and impacts;
648:
2827:
1017:
100:
1189:
570:
72:
2896:
2697:
2220:
1603:
1194:
1164:
2541:
1871:
1668:
181:
reference to the need to define and assign information security roles and responsibilities throughout the organization.
992:
79:
17:
2068:
1092:
605:
119:
2632:
1804:
1648:
238:
2000. ISO/IEC 17799 was then revised in June 2005 and finally incorporated in the ISO 27000 series of standards as
168:
86:
249:
BS 7799 Part 3 was published in 2005, covering risk analysis and management. It aligns with ISO/IEC 27001:2005.
2727:
2722:
2481:
2429:
57:
53:
325:
agreement with management) are often conducted more frequently, particularly while the ISMS is still maturing.
2978:
2521:
1851:
1364:
1012:
68:
355:
2866:
2344:
641:
2526:
2434:
2384:
2143:
1476:
1471:
870:
315:
2792:
2737:
2516:
2501:
1759:
1179:
675:
2840:
2747:
2536:
2511:
1723:
1718:
527:
252:
Very little reference or use is made to any of the BS standards in connection with ISO/IEC 27001.
2394:
1936:
1926:
1921:
1496:
1481:
1421:
855:
850:
810:
350:
46:
2968:
2944:
2712:
2702:
1831:
1249:
830:
634:
173:
2133:
1643:
865:
835:
728:
718:
679:
671:
360:
93:
2891:
2797:
2531:
2506:
2349:
2190:
1941:
1628:
1431:
1304:
1087:
340:
281:
208:
136:
8:
2732:
593:
2677:
2612:
952:
576:
318:. Passing this stage results in the ISMS being certified compliant with ISO/IEC 27001.
1506:
566:
501:
164:
580:
551:"ISO 27001 certification process of Electronic Invoice in the State of Minas Gerais"
2240:
1981:
1309:
626:
558:
493:
280:
An ISMS may be certified compliant with the ISO/IEC 27001 standard by a number of
2850:
2571:
2476:
2230:
2158:
2153:
2148:
1633:
1596:
1591:
1586:
1581:
1576:
1571:
1566:
335:
407:
2138:
1886:
1698:
1561:
1551:
1546:
1541:
1536:
1531:
1526:
1521:
1516:
885:
875:
550:
548:
562:
497:
2962:
2926:
2901:
2886:
2822:
2817:
2812:
2802:
2647:
2592:
2561:
2551:
2414:
2404:
2374:
2369:
2319:
2299:
2277:
2262:
2215:
2180:
2123:
2118:
2108:
1986:
1931:
1906:
1901:
1881:
1754:
1294:
733:
703:
505:
285:
239:
212:
177:
152:
2787:
2757:
2617:
1961:
1956:
1819:
1814:
1809:
1728:
1673:
1623:
1556:
1511:
1486:
1416:
1411:
1406:
1401:
1396:
1354:
1319:
1229:
1224:
1052:
860:
555:
2013 47th
International Carnahan Conference on Security Technology (ICCST)
481:
455:
2762:
2459:
2454:
2449:
2033:
1950:
922:
200:
test that the control has been implemented and is operating effectively.
2752:
2657:
2364:
2339:
2103:
2058:
1794:
1451:
1264:
1157:
1152:
1147:
1107:
1082:
957:
713:
2921:
2916:
2911:
2906:
2881:
2871:
2832:
2782:
2777:
2772:
2767:
2672:
2667:
2662:
2652:
2642:
2627:
2607:
2602:
2597:
2546:
2491:
2486:
2466:
2444:
2424:
2379:
2359:
2314:
2309:
2304:
2272:
2235:
2225:
2210:
2205:
2200:
2185:
2170:
2165:
2093:
2088:
2083:
2063:
2053:
2048:
2043:
2028:
2023:
1971:
1966:
1946:
1916:
1891:
1876:
1846:
1799:
1789:
1769:
1764:
1749:
1744:
1658:
1379:
1374:
1269:
915:
910:
905:
900:
895:
803:
798:
793:
788:
621:
430:
381:"ISO/IEC 27001 International Information Security Standard published"
227:
260:
The foundation of ISO/IEC 27001 is based on several key principles:
35:
2556:
2334:
2038:
1866:
1703:
1693:
1678:
1653:
1638:
1613:
1608:
1491:
1466:
1461:
1446:
1441:
1436:
1426:
1391:
1386:
1369:
1349:
1344:
1339:
1334:
1329:
1324:
1314:
1299:
1289:
1284:
1274:
1259:
1254:
1244:
1239:
1234:
1219:
1214:
1209:
1204:
1199:
1184:
1169:
1142:
1137:
1132:
1127:
1122:
1117:
1112:
1102:
1097:
1077:
1072:
1062:
1057:
1047:
1042:
1032:
1027:
1022:
997:
987:
880:
783:
778:
773:
768:
763:
758:
753:
748:
743:
482:"SWOT analysis of information security management system ISO 27001"
345:
155:
of the ISO/IEC 27001 certification process was conducted in 2020.
2845:
2637:
2622:
2419:
2409:
2399:
2175:
1991:
1836:
1824:
982:
977:
972:
967:
962:
947:
942:
937:
932:
927:
890:
845:
840:
825:
820:
815:
408:"NEW VERSION OF ISO/IEC 27001 TO BETTER TACKLE IT SECURITY RISKS"
223:
2707:
2692:
2687:
2682:
2354:
2329:
2257:
2113:
2098:
2078:
2073:
2018:
2011:
2006:
2001:
1896:
1861:
1708:
1359:
1174:
738:
480:
Akinyemi, Iretioluwa; Schatz, Daniel; Bashroush, Rabih (2020).
2742:
2717:
2439:
2324:
2195:
1976:
1841:
1713:
1688:
1683:
1663:
1037:
1007:
1002:
723:
708:
698:
693:
311:
148:
486:
International
Journal of Services Operations and Informatics
2389:
2252:
2245:
1911:
1856:
1456:
1067:
2876:
2566:
1618:
622:
ISO/IEC 27001 - Information
Security Management Systems
479:
139:. The standard was originally published jointly by the
656:
60:. Unsourced material may be challenged and removed.
255:
2960:
163:Most organizations have a number of information
230:in 1995. It was written by the UK government's
141:International Organization for Standardization
642:
336:ISO/IEC JTC 1/SC 27 - IT Security techniques
218:
649:
635:
310:is a more detailed and formal compliance
158:
145:International Electrotechnical Commission
120:Learn how and when to remove this message
184:ISO/IEC 27001 requires that management:
226:was a standard originally published by
135:is an international standard to manage
14:
2961:
234:(DTI) and consisted of several parts.
630:
405:
58:adding citations to reliable sources
29:
428:
24:
25:
2990:
615:
209:ISO/IEC 27000 family of standards
2940:
2939:
557:. Medellin: IEEE. pp. 1โ4.
275:
232:Department of Trade and Industry
34:
2974:Information assurance standards
256:Key Principles of ISO/IEC 27001
169:information security management
45:needs additional citations for
599:
587:
542:
512:
473:
448:
422:
406:Bird, Katie (14 August 2013).
399:
373:
13:
1:
366:
27:Information security standard
356:NIST Cybersecurity Framework
7:
329:
316:ISO/IEC 27001 Lead Auditors
10:
2995:
2935:
2859:
2585:
1737:
686:
668:
563:10.1109/CCST.2013.6922072
498:10.1504/ijsoi.2020.111297
219:History of ISO/IEC 27001
351:Cybersecurity standards
207:Other standards in the
174:information technology
167:. However, without an
159:How the standard works
361:List of ISO standards
282:Accredited Registrars
2979:ISO/IEC 27000 family
456:"ISO/IEC 27001:2013"
431:"ISO/IEC 27001:2022"
341:ISO/IEC 27000-series
137:information security
54:improve this article
520:"Facts and figures"
662:by standard number
530:on 20 October 2012
18:ISO/IEC 27001:2013
2953:
2952:
676:ISO romanizations
572:978-1-4799-0889-9
165:security controls
130:
129:
122:
104:
16:(Redirected from
2986:
2943:
2942:
663:
651:
644:
637:
628:
627:
609:
603:
597:
591:
585:
584:
546:
540:
539:
537:
535:
526:. Archived from
516:
510:
509:
477:
471:
470:
468:
466:
452:
446:
445:
443:
441:
426:
420:
419:
417:
415:
403:
397:
396:
394:
392:
377:
125:
118:
114:
111:
105:
103:
62:
38:
30:
21:
2994:
2993:
2989:
2988:
2987:
2985:
2984:
2983:
2959:
2958:
2956:
2954:
2949:
2931:
2855:
2581:
1733:
682:
664:
661:
655:
618:
613:
612:
604:
600:
592:
588:
573:
547:
543:
533:
531:
518:
517:
513:
478:
474:
464:
462:
454:
453:
449:
439:
437:
427:
423:
413:
411:
404:
400:
390:
388:
379:
378:
374:
369:
332:
278:
258:
221:
161:
126:
115:
109:
106:
69:"ISO/IEC 27001"
63:
61:
51:
39:
28:
23:
22:
15:
12:
11:
5:
2992:
2982:
2981:
2976:
2971:
2951:
2950:
2948:
2947:
2936:
2933:
2932:
2930:
2929:
2924:
2919:
2914:
2909:
2904:
2899:
2894:
2889:
2884:
2879:
2874:
2869:
2863:
2861:
2857:
2856:
2854:
2853:
2848:
2843:
2838:
2835:
2830:
2825:
2820:
2815:
2810:
2805:
2800:
2795:
2790:
2785:
2780:
2775:
2770:
2765:
2760:
2755:
2750:
2745:
2740:
2735:
2730:
2725:
2720:
2715:
2710:
2705:
2700:
2695:
2690:
2685:
2680:
2675:
2670:
2665:
2660:
2655:
2650:
2645:
2640:
2635:
2630:
2625:
2620:
2615:
2610:
2605:
2600:
2595:
2589:
2587:
2583:
2582:
2580:
2579:
2574:
2569:
2564:
2559:
2554:
2549:
2544:
2539:
2534:
2529:
2524:
2519:
2514:
2509:
2504:
2499:
2494:
2489:
2484:
2479:
2474:
2469:
2464:
2463:
2462:
2457:
2447:
2442:
2437:
2432:
2427:
2422:
2417:
2412:
2407:
2402:
2397:
2392:
2387:
2382:
2377:
2372:
2367:
2362:
2357:
2352:
2347:
2342:
2337:
2332:
2327:
2322:
2317:
2312:
2307:
2302:
2297:
2292:
2291:
2290:
2280:
2275:
2270:
2265:
2260:
2255:
2250:
2249:
2248:
2243:
2233:
2228:
2223:
2218:
2213:
2208:
2203:
2198:
2193:
2188:
2183:
2178:
2173:
2168:
2163:
2162:
2161:
2156:
2151:
2146:
2141:
2136:
2131:
2126:
2121:
2111:
2106:
2101:
2096:
2091:
2086:
2081:
2076:
2071:
2066:
2061:
2056:
2051:
2046:
2041:
2036:
2031:
2026:
2021:
2016:
2015:
2014:
2009:
1999:
1994:
1989:
1984:
1979:
1974:
1969:
1964:
1959:
1954:
1944:
1939:
1934:
1929:
1924:
1919:
1914:
1909:
1904:
1899:
1894:
1889:
1884:
1879:
1874:
1869:
1864:
1859:
1854:
1849:
1844:
1839:
1834:
1829:
1828:
1827:
1822:
1817:
1812:
1807:
1797:
1792:
1787:
1782:
1777:
1772:
1767:
1762:
1757:
1752:
1747:
1741:
1739:
1735:
1734:
1732:
1731:
1726:
1721:
1716:
1711:
1706:
1701:
1696:
1691:
1686:
1681:
1676:
1671:
1666:
1661:
1656:
1651:
1646:
1641:
1636:
1631:
1626:
1621:
1616:
1611:
1606:
1601:
1600:
1599:
1594:
1589:
1584:
1579:
1574:
1569:
1564:
1559:
1554:
1549:
1544:
1539:
1534:
1529:
1524:
1519:
1509:
1504:
1499:
1494:
1489:
1484:
1479:
1474:
1469:
1464:
1459:
1454:
1449:
1444:
1439:
1434:
1429:
1424:
1419:
1414:
1409:
1404:
1399:
1394:
1389:
1384:
1383:
1382:
1372:
1367:
1362:
1357:
1352:
1347:
1342:
1337:
1332:
1327:
1322:
1317:
1312:
1307:
1302:
1297:
1292:
1287:
1282:
1277:
1272:
1267:
1262:
1257:
1252:
1247:
1242:
1237:
1232:
1227:
1222:
1217:
1212:
1207:
1202:
1197:
1192:
1187:
1182:
1177:
1172:
1167:
1162:
1161:
1160:
1155:
1150:
1140:
1135:
1130:
1125:
1120:
1115:
1110:
1105:
1100:
1095:
1090:
1085:
1080:
1075:
1070:
1065:
1060:
1055:
1050:
1045:
1040:
1035:
1030:
1025:
1020:
1015:
1010:
1005:
1000:
995:
990:
985:
980:
975:
970:
965:
960:
955:
950:
945:
940:
935:
930:
925:
920:
919:
918:
913:
908:
903:
898:
888:
883:
878:
873:
868:
863:
858:
853:
848:
843:
838:
833:
828:
823:
818:
813:
808:
807:
806:
801:
796:
791:
786:
781:
776:
771:
766:
761:
756:
751:
746:
736:
731:
726:
721:
716:
711:
706:
701:
696:
690:
688:
684:
683:
669:
666:
665:
654:
653:
646:
639:
631:
625:
624:
617:
616:External links
614:
611:
610:
598:
586:
571:
541:
511:
472:
447:
421:
398:
371:
370:
368:
365:
364:
363:
358:
353:
348:
343:
338:
331:
328:
327:
326:
319:
305:
293:"registrars".
277:
274:
257:
254:
242:in July 2007.
220:
217:
197:
196:
193:
189:
160:
157:
143:(ISO) and the
128:
127:
42:
40:
33:
26:
9:
6:
4:
3:
2:
2991:
2980:
2977:
2975:
2972:
2970:
2969:ISO/IEC 27001
2967:
2966:
2964:
2957:
2946:
2938:
2937:
2934:
2928:
2925:
2923:
2920:
2918:
2915:
2913:
2910:
2908:
2905:
2903:
2900:
2898:
2895:
2893:
2890:
2888:
2885:
2883:
2880:
2878:
2875:
2873:
2870:
2868:
2865:
2864:
2862:
2858:
2852:
2849:
2847:
2844:
2842:
2839:
2836:
2834:
2831:
2829:
2826:
2824:
2821:
2819:
2816:
2814:
2811:
2809:
2806:
2804:
2801:
2799:
2796:
2794:
2791:
2789:
2786:
2784:
2781:
2779:
2776:
2774:
2771:
2769:
2766:
2764:
2761:
2759:
2756:
2754:
2751:
2749:
2746:
2744:
2741:
2739:
2736:
2734:
2731:
2729:
2726:
2724:
2721:
2719:
2716:
2714:
2711:
2709:
2706:
2704:
2701:
2699:
2696:
2694:
2691:
2689:
2686:
2684:
2681:
2679:
2676:
2674:
2671:
2669:
2666:
2664:
2661:
2659:
2656:
2654:
2651:
2649:
2646:
2644:
2641:
2639:
2636:
2634:
2631:
2629:
2626:
2624:
2621:
2619:
2616:
2614:
2611:
2609:
2606:
2604:
2601:
2599:
2596:
2594:
2591:
2590:
2588:
2584:
2578:
2575:
2573:
2570:
2568:
2565:
2563:
2560:
2558:
2555:
2553:
2550:
2548:
2545:
2543:
2540:
2538:
2535:
2533:
2530:
2528:
2525:
2523:
2520:
2518:
2515:
2513:
2510:
2508:
2505:
2503:
2500:
2498:
2495:
2493:
2490:
2488:
2485:
2483:
2480:
2478:
2475:
2473:
2470:
2468:
2465:
2461:
2458:
2456:
2453:
2452:
2451:
2448:
2446:
2443:
2441:
2438:
2436:
2433:
2431:
2428:
2426:
2423:
2421:
2418:
2416:
2413:
2411:
2408:
2406:
2403:
2401:
2398:
2396:
2393:
2391:
2388:
2386:
2383:
2381:
2378:
2376:
2373:
2371:
2368:
2366:
2363:
2361:
2358:
2356:
2353:
2351:
2348:
2346:
2343:
2341:
2338:
2336:
2333:
2331:
2328:
2326:
2323:
2321:
2318:
2316:
2313:
2311:
2308:
2306:
2303:
2301:
2298:
2296:
2293:
2289:
2286:
2285:
2284:
2281:
2279:
2276:
2274:
2271:
2269:
2266:
2264:
2261:
2259:
2256:
2254:
2251:
2247:
2244:
2242:
2239:
2238:
2237:
2234:
2232:
2229:
2227:
2224:
2222:
2219:
2217:
2214:
2212:
2209:
2207:
2204:
2202:
2199:
2197:
2194:
2192:
2189:
2187:
2184:
2182:
2179:
2177:
2174:
2172:
2169:
2167:
2164:
2160:
2157:
2155:
2152:
2150:
2147:
2145:
2142:
2140:
2137:
2135:
2132:
2130:
2127:
2125:
2122:
2120:
2117:
2116:
2115:
2112:
2110:
2107:
2105:
2102:
2100:
2097:
2095:
2092:
2090:
2087:
2085:
2082:
2080:
2077:
2075:
2072:
2070:
2067:
2065:
2062:
2060:
2057:
2055:
2052:
2050:
2047:
2045:
2042:
2040:
2037:
2035:
2032:
2030:
2027:
2025:
2022:
2020:
2017:
2013:
2010:
2008:
2005:
2004:
2003:
2000:
1998:
1995:
1993:
1990:
1988:
1985:
1983:
1980:
1978:
1975:
1973:
1970:
1968:
1965:
1963:
1960:
1958:
1955:
1952:
1948:
1945:
1943:
1940:
1938:
1935:
1933:
1930:
1928:
1925:
1923:
1920:
1918:
1915:
1913:
1910:
1908:
1905:
1903:
1900:
1898:
1895:
1893:
1890:
1888:
1885:
1883:
1880:
1878:
1875:
1873:
1870:
1868:
1865:
1863:
1860:
1858:
1855:
1853:
1850:
1848:
1845:
1843:
1840:
1838:
1835:
1833:
1830:
1826:
1823:
1821:
1818:
1816:
1813:
1811:
1808:
1806:
1803:
1802:
1801:
1798:
1796:
1793:
1791:
1788:
1786:
1783:
1781:
1778:
1776:
1773:
1771:
1768:
1766:
1763:
1761:
1758:
1756:
1753:
1751:
1748:
1746:
1743:
1742:
1740:
1736:
1730:
1727:
1725:
1722:
1720:
1717:
1715:
1712:
1710:
1707:
1705:
1702:
1700:
1697:
1695:
1692:
1690:
1687:
1685:
1682:
1680:
1677:
1675:
1672:
1670:
1667:
1665:
1662:
1660:
1657:
1655:
1652:
1650:
1647:
1645:
1642:
1640:
1637:
1635:
1632:
1630:
1627:
1625:
1622:
1620:
1617:
1615:
1612:
1610:
1607:
1605:
1602:
1598:
1595:
1593:
1590:
1588:
1585:
1583:
1580:
1578:
1575:
1573:
1570:
1568:
1565:
1563:
1560:
1558:
1555:
1553:
1550:
1548:
1545:
1543:
1540:
1538:
1535:
1533:
1530:
1528:
1525:
1523:
1520:
1518:
1515:
1514:
1513:
1510:
1508:
1505:
1503:
1500:
1498:
1495:
1493:
1490:
1488:
1485:
1483:
1480:
1478:
1475:
1473:
1470:
1468:
1465:
1463:
1460:
1458:
1455:
1453:
1450:
1448:
1445:
1443:
1440:
1438:
1435:
1433:
1430:
1428:
1425:
1423:
1420:
1418:
1415:
1413:
1410:
1408:
1405:
1403:
1400:
1398:
1395:
1393:
1390:
1388:
1385:
1381:
1378:
1377:
1376:
1373:
1371:
1368:
1366:
1363:
1361:
1358:
1356:
1353:
1351:
1348:
1346:
1343:
1341:
1338:
1336:
1333:
1331:
1328:
1326:
1323:
1321:
1318:
1316:
1313:
1311:
1308:
1306:
1303:
1301:
1298:
1296:
1293:
1291:
1288:
1286:
1283:
1281:
1278:
1276:
1273:
1271:
1268:
1266:
1263:
1261:
1258:
1256:
1253:
1251:
1248:
1246:
1243:
1241:
1238:
1236:
1233:
1231:
1228:
1226:
1223:
1221:
1218:
1216:
1213:
1211:
1208:
1206:
1203:
1201:
1198:
1196:
1193:
1191:
1188:
1186:
1183:
1181:
1178:
1176:
1173:
1171:
1168:
1166:
1163:
1159:
1156:
1154:
1151:
1149:
1146:
1145:
1144:
1141:
1139:
1136:
1134:
1131:
1129:
1126:
1124:
1121:
1119:
1116:
1114:
1111:
1109:
1106:
1104:
1101:
1099:
1096:
1094:
1091:
1089:
1086:
1084:
1081:
1079:
1076:
1074:
1071:
1069:
1066:
1064:
1061:
1059:
1056:
1054:
1051:
1049:
1046:
1044:
1041:
1039:
1036:
1034:
1031:
1029:
1026:
1024:
1021:
1019:
1016:
1014:
1011:
1009:
1006:
1004:
1001:
999:
996:
994:
991:
989:
986:
984:
981:
979:
976:
974:
971:
969:
966:
964:
961:
959:
956:
954:
951:
949:
946:
944:
941:
939:
936:
934:
931:
929:
926:
924:
921:
917:
914:
912:
909:
907:
904:
902:
899:
897:
894:
893:
892:
889:
887:
884:
882:
879:
877:
874:
872:
869:
867:
864:
862:
859:
857:
854:
852:
849:
847:
844:
842:
839:
837:
834:
832:
829:
827:
824:
822:
819:
817:
814:
812:
809:
805:
802:
800:
797:
795:
792:
790:
787:
785:
782:
780:
777:
775:
772:
770:
767:
765:
762:
760:
757:
755:
752:
750:
747:
745:
742:
741:
740:
737:
735:
732:
730:
727:
725:
722:
720:
717:
715:
712:
710:
707:
705:
702:
700:
697:
695:
692:
691:
689:
685:
681:
680:IEC standards
677:
673:
672:ISO standards
667:
659:
652:
647:
645:
640:
638:
633:
632:
629:
623:
620:
619:
607:
606:ISO/IEC 27006
602:
595:
594:ISO/IEC 17021
590:
582:
578:
574:
568:
564:
560:
556:
552:
545:
529:
525:
521:
515:
507:
503:
499:
495:
491:
487:
483:
476:
461:
457:
451:
436:
432:
425:
409:
402:
386:
382:
376:
372:
362:
359:
357:
354:
352:
349:
347:
344:
342:
339:
337:
334:
333:
323:
320:
317:
313:
309:
306:
302:
299:
298:
297:
294:
290:
287:
286:Certification
283:
276:Certification
273:
269:
265:
261:
253:
250:
247:
243:
241:
240:ISO/IEC 27002
235:
233:
229:
225:
216:
214:
213:ISO/IEC 27005
210:
205:
201:
194:
190:
187:
186:
185:
182:
179:
178:data security
175:
170:
166:
156:
154:
153:SWOT analysis
150:
146:
142:
138:
134:
133:ISO/IEC 27001
124:
121:
113:
102:
99:
95:
92:
88:
85:
81:
78:
74:
71: โ
70:
66:
65:Find sources:
59:
55:
49:
48:
43:This article
41:
37:
32:
31:
19:
2955:
2807:
2798:27000 series
601:
589:
554:
544:
532:. Retrieved
528:the original
524:bsigroup.com
523:
514:
489:
485:
475:
463:. Retrieved
459:
450:
438:. Retrieved
434:
424:
412:. Retrieved
401:
389:. Retrieved
385:bsigroup.com
384:
375:
321:
307:
300:
295:
291:
279:
270:
266:
262:
259:
251:
248:
244:
236:
222:
206:
204:management.
202:
198:
183:
162:
132:
131:
116:
107:
97:
90:
83:
76:
64:
52:Please help
47:verification
44:
2586:20000โ29999
1738:10000โ19999
440:29 November
284:worldwide.
2963:Categories
2365:16949 (TS)
1962:11941 (TR)
660:standards
534:10 January
492:(4): 305.
367:References
110:April 2014
80:newspapers
2320:15926 WIP
1684:9592/9593
1609:9000/9001
1497:8805/8806
506:1741-539X
429:ISO/IEC.
414:21 August
391:21 August
228:BSI Group
2945:Category
670:List of
581:17485185
346:ISO 9001
330:See also
176:(IT) or
2846:29199-2
2718:23094-2
2713:23094-1
2703:23090-3
2572:19794-5
2567:19775-1
2355:16612-2
2345:16355-1
2034:13406-2
1992:12234-2
1760:10118-3
435:ISO.org
322:Ongoing
308:Stage 2
301:Stage 1
224:BS 7799
94:scholar
2860:30000+
1699:9797-1
1507:8820-5
1452:8501-1
1008:1073-2
1003:1073-1
687:1โ9999
579:
569:
504:
465:9 July
96:
89:
82:
75:
67:
2927:80000
2922:56000
2917:55000
2912:50001
2907:45001
2902:42010
2897:40500
2892:39075
2887:38500
2882:37001
2877:32000
2872:31000
2867:30170
2851:29500
2841:29148
2837:29110
2833:28000
2828:27729
2823:27006
2818:27005
2813:27002
2808:27001
2803:27000
2793:26324
2788:26300
2783:26262
2778:26000
2773:25964
2768:25178
2763:24728
2758:24707
2753:24617
2748:24613
2743:24517
2738:23941
2733:23360
2728:23271
2723:23270
2708:23092
2698:23009
2693:23008
2688:23003
2683:23000
2678:22537
2673:22395
2668:22301
2663:22300
2658:22275
2653:22000
2648:21827
2643:21500
2638:21122
2633:21047
2628:21001
2623:21000
2618:20830
2613:20802
2608:20400
2603:20121
2598:20022
2593:20000
2577:19831
2562:19770
2557:19757
2552:19752
2547:19600
2542:19510
2537:19509
2532:19508
2527:19507
2522:19506
2517:19505
2512:19503
2507:19502
2502:19501
2497:19500
2492:19439
2487:19407
2482:19136
2477:19125
2472:19115
2467:19114
2450:19092
2445:19011
2440:19005
2435:18916
2430:18629
2425:18245
2420:18181
2415:18014
2410:18004
2405:17799
2400:17506
2395:17442
2390:17369
2385:17203
2380:17100
2375:17025
2370:17024
2360:16750
2350:16485
2340:16262
2335:16023
2330:15938
2325:15930
2315:15926
2310:15924
2305:15919
2300:15897
2295:15707
2283:15706
2278:15693
2273:15686
2268:15511
2263:15504
2258:15438
2253:15445
2236:15444
2231:15408
2226:15398
2221:15291
2216:15288
2211:15189
2206:15022
2201:14971
2196:14882
2191:14764
2186:14698
2181:14651
2176:14649
2171:14644
2166:14617
2114:14496
2109:14443
2104:14396
2099:14289
2094:14224
2089:14031
2084:14000
2079:13818
2074:13816
2069:13616
2064:13584
2059:13568
2054:13567
2049:13490
2044:13485
2039:13450
2029:13399
2024:13250
2019:13216
2002:13211
1997:12620
1987:12207
1982:12182
1977:12052
1972:12006
1967:11992
1957:11941
1947:11940
1942:11898
1937:11889
1932:11801
1927:11785
1922:11784
1917:11783
1912:11544
1907:11404
1902:11179
1897:11172
1892:11170
1887:11073
1882:10967
1877:10962
1872:10957
1867:10861
1862:10746
1857:10664
1852:10646
1847:10628
1842:10589
1837:10585
1832:10383
1800:10303
1795:10279
1790:10218
1785:10206
1780:10179
1775:10165
1770:10161
1765:10160
1755:10116
1750:10007
1745:10006
577:S2CID
410:. ISO
387:. BSI
312:audit
149:audit
101:JSTOR
87:books
1825:-238
1729:9995
1724:9985
1719:9984
1714:9945
1709:9899
1704:9897
1694:9660
1689:9594
1679:9564
1674:9529
1669:9506
1664:9496
1659:9407
1654:9362
1649:9314
1644:9293
1639:9241
1634:9227
1629:9141
1624:9126
1619:9075
1614:9036
1604:8879
1557:-8-I
1512:8859
1502:8807
1492:8691
1487:8652
1482:8651
1477:8632
1472:8613
1467:8601
1462:8583
1457:8571
1447:8373
1442:8217
1437:8178
1432:8093
1427:8000
1422:7942
1417:7816
1412:7813
1407:7812
1402:7811
1397:7810
1392:7736
1387:7637
1375:7498
1370:7200
1365:7185
1360:7098
1355:7064
1350:7027
1345:7010
1340:7002
1335:7001
1330:6943
1325:6709
1320:6523
1315:6438
1310:6429
1305:6425
1300:6385
1295:6373
1290:6346
1285:6344
1280:6166
1275:5964
1270:5807
1265:5800
1260:5776
1255:5775
1250:5725
1245:5428
1240:5427
1235:5426
1230:5218
1225:4909
1220:4217
1215:4165
1210:4157
1205:4031
1200:3977
1195:3950
1190:3901
1185:3864
1180:3602
1175:3601
1170:3307
1165:3297
1143:3166
1138:3103
1133:3029
1128:2921
1123:2852
1118:2848
1113:2788
1108:2720
1103:2711
1098:2709
1093:2533
1088:2281
1083:2240
1078:2146
1073:2145
1068:2108
1063:2047
1058:2033
1053:2022
1048:2015
1043:2014
1038:1989
1033:1745
1028:1629
1023:1538
1018:1413
1013:1155
998:1007
993:1004
988:1000
811:68-1
567:ISBN
536:2018
502:ISSN
467:2020
442:2022
416:2020
393:2020
151:. A
73:news
2159:-20
2154:-17
2149:-14
2144:-12
2139:-11
2134:-10
1820:-28
1815:-22
1810:-21
1805:-11
1597:-16
1592:-15
1587:-14
1582:-13
1577:-12
1572:-11
1567:-10
983:999
978:965
973:898
968:860
963:843
958:838
953:764
948:732
943:704
938:690
933:668
928:657
923:646
891:639
886:519
881:518
876:500
871:361
866:306
861:302
856:262
851:261
846:259
841:233
836:228
831:226
826:217
821:216
816:128
804:-13
799:-12
794:-11
789:-10
658:ISO
559:doi
494:doi
460:ISO
215:).
192:and
56:by
2965::
2460:-2
2455:-1
2288:-2
2246:-9
2241:-3
2129:-6
2124:-3
2119:-2
2012:-2
2007:-1
1951:-2
1562:-9
1552:-8
1547:-7
1542:-6
1537:-5
1532:-4
1527:-3
1522:-2
1517:-1
1380:-1
1158:-3
1153:-2
1148:-1
916:-6
911:-5
906:-3
901:-2
896:-1
784:-9
779:-8
774:-7
769:-6
764:-5
759:-4
754:-3
749:-1
744:-0
739:31
734:17
729:16
678:โ
674:โ
575:.
565:.
553:.
522:.
500:.
490:10
488:.
484:.
458:.
433:.
383:.
1953:)
1949:(
724:9
719:7
714:6
709:4
704:3
699:2
694:1
650:e
643:t
636:v
608:.
596:.
583:.
561::
538:.
508:.
496::
469:.
444:.
418:.
395:.
123:)
117:(
112:)
108:(
98:ยท
91:ยท
84:ยท
77:ยท
50:.
20:)
Text is available under the Creative Commons Attribution-ShareAlike License. Additional terms may apply.