What is ISO 27001?
ISO 27001 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system (ISMS). It also includes requirements for the assessment and treatment of information security risks.
The requirements set out in ISO 27001 are generic and are intended to be applicable to all organisations, regardless of type, size or nature.
ISO 27001 is a great starting point for any organisation looking to implement an Information Security Management System (ISMS).