Information security, cybersecurity and privacy protection - Information security management systems - Requirements
NORMA vydána dne 25.10.2022
Označení normy: ISO/IEC 27001-ed.3.0
Datum vydání normy: 25.10.2022
Počet stran: 19
Přibližná hmotnost: 57 g (0.13 liber)
Země: Mezinárodní technická norma
Kategorie: Technické normy ISO
This document specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. This document also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in this document are generic and are intended to be applicable to all organizations, regardless of type, size or nature. Excluding any of the requirements specified in Clauses 4 to 10 is not acceptable when an organization claims conformity to this document.
Le present document specifie les exigences relatives a letablissement, a la mise en ouvre, a la mise a jour et a lamelioration continue dun systeme de management de la securite de linformation dans le contexte dune organisation. Le present document comporte egalement des exigences sur lappreciation et le traitement des risques de securite de linformation, adaptees aux besoins de lorganisation. Les exigences fixees dans le present document sont generiques et prevues pour sappliquer a toute organisation, quels que soient son type, sa taille et sa nature. Il nest pas admis quune organisation saffranchisse de lune des exigences specifiees aux Articles 4 a 10 lorsquelle revendique la conformite au present document.