==Introduction==

PLAN DO
CHECK ACT
  • Belongs to the family of ISO 27000 series (Information security management).
  • Among widely used security practices/standards for information security management systems (ISMS).
  • A systematic framework for establishing, implementing, maintaining, and continually improving an organization’s ISMS.
  • ISO/IEC 27001 helps organizations built an adaptable information security management system and risk management process tailored to their size and needs.
  • Help organization preserve the confidentiality, integrity, and availability of information.
  • ISO/IEC 27001 helps organizations become risk-aware and proactively identify and address cybersecurity related weaknesses.

==Clauses==

Iso 27001 Standard contains 11 clauses numbered 0-10 and security controls. Clauses 4-10 are the compulsory requirements taht organizations are unable to avoid.

!Image Description

!Image Description

!Image Description