2. Contents
About ISO
What are standards?
Popular standards
ISO 27001
ISO 27001 : 2013
ISO in Kentico software companies in India
3. ISO is an independent, non-governmental international organization with a
membership of 161 national standards bodies.
Brings together experts to share knowledge and develop market relevant
International Standards.
Supports innovation and provides solutions to global challenges.
What is ISO?
ISO in Kentico software companies in India
4. ISO standards impact everyone, everywhere.
Provide specifications for products, services and systems, to ensure quality, safety
and efficiency.
Facilitate international trade.
Serve to safeguard consumers and the end-users of products and services.
Ensure certified products conform to the minimum standards set internationally.
What are standards?
ISO in Kentico software companies in India
5. What are standards?(Contd.)
ISO has published more than 19000 International Standards and related
documents.
Cover every industry, from technology, to food safety, to agriculture and healthcare.
Help businesses increase productivity while minimizing errors and waste.
Facilitate companies in entering new markets and assist in the development of
global trade on a fair basis.
Enable products from different markets to be directly compared.
ISO in Kentico software companies in India
6. Popular Standards
ISO 9000 Quality management
ISO 14000 Environmental management
ISO 3166 Country codes
ISO 26000 Social responsibility
ISO 50001 Energy management
ISO 31000 Risk management
ISO in Kentico software companies in India
7. ISO 22000 Food safety management
ISO 27001 Information security management
ISO 45001 Occupational health and safety
ISO 37001 Anti bribery management systems
ISO 13485 Medical devices
Popular Standards (Contd.)
ISO in Kentico software companies in India
8. ISO 27001
ISO 27001 is a specification for an information security management system (ISMS).
An ISMS is a framework of policies and procedures that includes all legal, physical
and technical controls involved in an organisation's information risk management
processes.
Help small, medium and large businesses in any sector keep information assets
secure.
ISO in Kentico software companies in India
9. Provides a model for establishing, implementing, operating, monitoring,
maintaining and improving an information security management system.
Uses a top-down, risk-based approach and is technology-neutral.
Includes details for documentation, management responsibility, internal
audits, continual improvement, and corrective and preventive action.
ISO 27001 (Contd.)
ISO in Kentico software companies in India
10. ISO/IEC 27001:2013 is an information security standard that was published
on the 25th September 2013.
Supersedes ISO/IEC 27001:2005, and is published by the International
Organization for Standardization (ISO) and the International Electro-
technical Commission (IEC) under the joint ISO and IEC subcommittee
ISO 27001 : 2013
ISO in Kentico software companies in India
11. 114 controls in 14 groups and 35 control objectives in ISO 27001 : 2013.
8 management clauses ( Clause 4 to Clause 10 ) in ISO 27001 : 2013.
14 groups are documented in Annexure A in ISO 27001 : 2013 ( A.5 to A.18 ).
ISO 27001 : 2013 (Contd.)
ISO in Kentico software companies in India