Skip to main content

ISO 27000

Overview and Terminology

What is ISO 27000?

The international standard ISO/IEC 27000 is part of the ISO 27000 series of standards. In 2009 it was published by Joint Technical Committee JTC1 established by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). Its official title is "Information technology — Security techniques — Information security management systems — Overview and vocabulary".

ISO 27000: Topics and Content

ISO 27000 covers the following topics:
  • Overview of the ISO 27000 series of standards Which standards does the series contain, what are their functions, and how do they complement each other?
  • Introduction to the concept of an "Information Security Management System" (ISMS) What is an ISMS, what are its benefits, and what is important during implementation?
  • Glossary with basic terms and definitions that are used in the ISO 27000 series of standards
ISO/IEC 27000 is not certifiable and exclusively provides background information required to work with the sub-standards of the series. Its objective is to define a generally accepted set of terminology for the area of information security.

The ISO 27000 Series of Standards

The ISO 27000 sub-standards provide you with specific guidelines for the implementation of an ISMS in your organisation. To find out which standards there are and which of them are relevant for you, please refer to our overview. Our project procedure describes how plan42 supports you during implementation. Do you have any further questions? Please feel free to contact us.