ISO 27001

ISO/IEC 27001:2022 is an international standard - Information Security, Cybersecurity and Privacy Management System. The standard was originally issued jointly by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) in 2005, revised in 2013, and now the latest edition is newly coming into force in 2022.

This standard specifies the requirements for establishing, implementing, maintaining and continuously improving an information security management system in the context of an organization. This standard also includes requirements for the assessment and treatment of information security risks, tailored to the needs of the organisation. The requirements of this document are of general application and are applicable to all organisations regardless of their type, size and nature of their activities.