ISO 27001
ISO 27001 as an internation standard for information security has a primary purpose to reduce an organizations exposure to risk of loss or compromise to the organizations information.
ISO 27001 defines the requirement for an Information Security Management System (ISMS) that is "fit for purpose". The standard has 11 distinct areas and 39 security control objectives.
|