DIN EN ISO/IEC 27000
Information technology - Security techniques - Information security management systems - Overview and vocabulary (ISO/IEC 27000:2016)
| Organization: | DIN |
| Publication Date: | 1 October 2017 |
| Status: | inactive |
| Page Count: | 43 |
| ICS Code (Services. Company organization, management and quality. Administration. Transport. Sociology. (Vocabularies)): | 01.040.03 |
| ICS Code (Information technology (Vocabularies)): | 01.040.35 |
| ICS Code (Management systems): | 03.100.70 |
| ICS Code (IT Security): | 35.030 |
scope:
This International Standard provides the overview of information security management systems, and terms and definitions commonly used in the ISMS family of standards. This International Standard is applicable to all types and sizes of organization (e.g. commercial enterprises, government agencies, notfor- profit organizations).
Purpose of this International Standard
This International Standard provides an overview of information security management systems and defines related terms.
NOTE Annex A provides clarification on how verbal forms are used to express requirements and/or guidance in the ISMS family of standards.
The ISMS family of standards includes standards that
a) define requirements for an ISMS and for those certifying such systems,
b) provide direct support, detailed guidance and/or interpretation for the overall process to establish, implement, maintain, and improve an ISMS,
c) address sector-specific guidelines for ISMS, and
d) address conformity assessment for ISMS.
The terms and definitions provided in this International Standard
- cover commonly used terms and definitions in the ISMS family of standards,
- do not cover all terms and definitions applied within the ISMS family of standards, and
- do not limit the ISMS family of standards in defining new terms for use.
Document History
