ISO 27001:2013 – Information Technology – Security Techniques — Information Security Management Systems

ISO 27001:2013 Overview

ISO 27001:2013 formally specifies an Information Security Management System (ISMS), a suite of activities concerning the management of Information Security Risks. The ISMS is an overarching management framework through which the organization identifies, analyzes and addresses its Information Security Risks. The ISMS ensures that the security arrangements are fine-tuned to keep pace with changes to the security threats, vulnerabilities and business impacts.

ISO 27001:2013 Registration

The current KTC ISO 27001:2013 Certificate was renewed on January 18, 2016 and is subject for renewal in 2019.

ISO 31000:2009