Be the first to like this
Any organization may develop its own ISO 27001 information security system to address issues arising out of its activities, product or services. It suggests identify the information security assets of the organization and identify threats and vulnerability and implement risk control plan. There are many requirements and sub elements of ISO 27001:2005 standard. The key elements of ISO 27001 standards is as listed below.