What is ISO 27001?
The abbreviation 'ISO' stands for International Organization of Standardization - an independent, non-governmental international organization with 161 national standardization bodies. The organization facilitates knowledge sharing from experts and promotes the development of market-relevant international standards that support innovation and provide solutions to global challenges.
The number '27001' is the common name for a number of specific standards and requirements on how a management system for information security must be implemented and maintained in a company. ISO27001 is based on a risk-based approach to the management of information security and the standards are set to set the procedures in the system.