SS ISO/IEC 27001:2019

Information technology - Security techniques - Information security management systems -Requirements


Specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organisation. Includes requirements for the assessment and treatment of information security risks tailored to the needs of the organisation. The requirements are generic and are intended to be applicable to all organisations, regardless of type, size or nature.




Status Current
Edition 2019
No. of Pages 36
ICS Classification 35.040 Information coding
Committee Information Technology Standards Committee
Available for Purchase Global
Adoption ISO ISO/IEC 27001 : 2013 IDT