ISO27001 directly replaced BS7799-2 in 2005. Unlike ISO17799, which is a code of practive, ISO27001 is a specification for an information security management system (ISMS). It aligns with other ISO specifications, such as ISO9001 and ISO14001.

Contrary to common belief, certification is granted against this standard, rather than ISO27002 / ISO17799.

Recently Changed
Certification (ages ago)
risk treatment plan (ages ago)
Spanish (ages ago)