Best-practice security management standards lay out baseline guidance for securing corporate assets, be those assets digital or physical. The ISO (International Organization for Standardization) 27001 information security (IS) management systems standard, in particular, focuses on securing information assets.
The standard itself is part of the ISO 27000 series of IS standards. These standards all share a focus on Information Systems Management (ISM), with ISO 27001, originally dubbed BS7799, included in this family of ISO standards when the organization officially began adding ISMS standardsi.
So, what does ISO 27001 do, exactly?
The standard suggests methods and practices of implementing information security in organizations. It provides flexible guidelines – targeted at all companies, irrespective of sector or size – for how methods and practices should be implemented.
What’s more, ISO 27001 also provides a means of enabling secure, reliable communications of security risk.
Download the guide to continue reading >>