ISO 27000


Also found in: Dictionary, Thesaurus, Medical, Legal, Financial.

ISO 27000

Also referred to as "ISO27k" and "ISO/IEC 27000", it is an ongoing series of standards for managing and measuring information security and its support systems within an enterprise. First published in 2005, the ISO 27000 series is jointly developed by ISO and the IEC. The standards provide requirements of certification (27001) and codes of best practice (27002) in one of the newer arenas that ISO has addressed. It is often the CCO and CSO within an organization who help to oversee the policies and procedures associated with information security management. See ISO, CCO, CSO and Sarbanes-Oxley Act.
Copyright © 1981-2019 by The Computer Language Company Inc. All Rights reserved. THIS DEFINITION IS FOR PERSONAL USE ONLY. All other reproduction is strictly prohibited without permission from the publisher.
References in periodicals archive ?
frameworks (2006) (2013) (2008) (2011) COBIT * * * * * * ITIL * * * * * ISO 27000 series, ISO 38500 & * * * * * ISO9001 FFIEC * CGTF * IISA * CISWG * PCI DSS * COSO Tick IT NIST Prince 2 CMMI TQM Authors Heschl Sheikhpour & Shivashankarappa Aileen et al.
In other words, the ISMS that focuses on confidentiality, integrity, and availability of information based on ISO 27000 series is unfit to manage sensitive information on an ICS.
FIS offers key consulting services like security risk assessment, applications code review, network penetration testing, security policies deployment and audit, ISO 27000 1 and 2 compliance and PCI DSS compliance.
Verizon developed a framework-based assessment using the ISO 27000 family of information security standards, which covers over 600 requirements across 12 categories.
The ISO 27000 is a series of standards, owned by the International Standards Organization, focusing on information security matters.
For added assurance, Cygnet has also committed to international standards of excellence including the ISO 9001 for quality, ISO 27000 for information security and CMMi Level 3 for maturity of processes and reliability.
Vigilant helps customers comply with ISO 27000 series, a family of standards for information security management, and ISO 31000, a new international standard on risk management.
Over the next five years, ISMS (ISO 27000) certification will become a de facto best practice.
GPIC won the ISO 9000 quality certification, ISO 14000 environmental management certification and ISO 27000 information system security award and the PAS 99 certification for integrated management systems.