ISO 27001–Information Security Management Systems

​

Approach

​

ISO 27001 is the International Standard which details the requirements for establishing and maintaining an Information Security Management System (ISMS), an organised approach for managing an organisation’s information security which encompasses people, processes and technology.

​

ISO 27001 should be used in conjunction with ISO 27002, which provides implementation guidance and controls.