ISO/IEC 27001:2013 Annex A
ISO 27001 (ISO/IEC 27001:2013) is the international standard that provides the specification for an information security management system (ISMS). The latest version was published in October 2013. The Standard is designed to help organisations manage their information security processes in line with international best practice while optimising costs. It is technology and vendor neutral and is applicable to all organisations - irrespective of their size, type or nature. The Standard takes a risk-based approach to information security, requiring organisations to identify threats to their organisation and select appropriate controls to tackle them. Those controls are outlined in Annex A of the Standard. There are 114 in total, divided into 14 different categories.
Subscribe for the latest 6clicks content
Receive weekly updates on the latest additions to the 6clicks Content Library.