NF ISO/IEC 27000

NF ISO/IEC 27000

December 2013
Standard Cancelled

Information technology - Security techniques - Information security management systems - Overview and vocabulary

ISO/IEC 27000:2012 describes the overview and the vocabulary of information security management systems, which form the subject of the ISMS family of standards, and defines related terms and definitions.ISO/IEC 27000:2012 is applicable to all types and sizes of organisation (e.g. commercial enterprises, government agencies, not-for-profit organisations).

See more
View the extract
Main informations

Collections

National standards and national normative documents

Thematics

Qualité - audit - lean, Management et performance, QSE

Publication date

December 2013

Number of pages

36 p.

Reference

NF ISO/IEC 27000

ICS Codes

01.040.03   Services. Company organization, management and quality. Administration. Transport. Sociology. (Vocabularies)
01.040.35   Information technology (Vocabularies)
03.100.70   Management systems
35.030   IT Security

Classification index

Z74-220

Print number

1 - 19/11/2013

International kinship

ISO/IEC 27000:2012
Sumary
Information technology - Security techniques - Information security management systems - Overview and vocabulary

ISO/IEC 27000:2012 describes the overview and the vocabulary of information security management systems, which form the subject of the ISMS family of standards, and defines related terms and definitions.

ISO/IEC 27000:2012 is applicable to all types and sizes of organisation (e.g. commercial enterprises, government agencies, not-for-profit organisations).

Replaced standards (1)
NF ISO/IEC 27000
February 2011
Standard Cancelled
Information technology - Security techniques - Information security management systems - Overview and vocabulary

ISO/IEC 27000:2009 provides an overview of information security management systems, which form the subject of the information security management system (ISMS) family of standards, and defines related terms. As a result of implementing ISO/IEC 27000:2009, all types of organization (e.g. commercial enterprises, government agencies and non-profit organizations) are expected to obtain: an overview of the ISMS family of standards; an introduction to information security management systems (ISMS); a brief description of the Plan-Do-Check-Act (PDCA) process; and an understanding of terms and definitions in use throughout the ISMS family of standards. The objectives of ISO/IEC 27000:2009 are to provide terms and definitions, and an introduction to the ISMS family of standards that: define requirements for an ISMS and for those certifying such systems; provide direct support, detailed guidance and/or interpretation for the overall Plan-Do-Check-Act (PDCA) processes and requirements; address sector-specific guidelines for ISMS; and address conformity assessment for ISMS.

Standard replaced by (1)
NF ISO/IEC 27000
January 2015
Standard Cancelled
Information technology - Security techniques - Information security management systems - Overview and vocabulary

ISO/IEC 27000:2014 provides the overview of information security management systems (ISMS), and terms and definitions commonly used in the ISMS family of standards. It is applicable to all types and sizes of organization (e.g. commercial enterprises, government agencies, not-for-profit organizations).

ZOOM ON ... the Requirements department
To comply with a standard, you need to quickly understand its issues in order to determine its impact on your activity.

The Requirements department helps you quickly locate within the normative text:
- mandatory clauses to satisfy,
- non-essential but useful clauses to know, such as permissions and recommendations.

The identification of these types of clauses is based on the document “ISO / IEC Directives, Part 2 - Principles and rules of structure and drafting of ISO documents ”as well as on a constantly enriched list of verbal forms.

With Requirements, quickly access the main part of the normative text!

With Requirements, quickly access the main part of the normative text!
What is the Redline format?
The Redline + service - standards comparator allows you to easily and simply identify major changes between the current standard and its last canceled version.

At a glance, you will be able to identify the additions, deletions or modifications to a text, table, figure and formula.
At a glance, you will be able to identify the additions, deletions or modifications to a text, table, figure and formula

The Redlines + service is offered to you on the collection of French standards in force, in French language and in HTML and PDF format.

For an overview of the service, click on View a standard in redline format
Need to identify, monitor and decipher standards?

COBAZ is the simple and effective solution to meet the normative needs related to your activity, in France and abroad.

Available by subscription, CObaz is THE modular solution to compose according to your needs today and tomorrow. Quickly discover CObaz!

Request your free, no-obligation live demo

I discover COBAZ