ISO IEC 27002 is a comprehensive information security standard. It takes a very
broad approach. In the context of this standard, the term information includes
all forms of data, documents, communications, conversations, messages,
recordings, and photographs. It includes all forms of information.
IEC 27002 2013 is an information security
DEFINITION OF INFORMATION
The ISO IEC 27002
standard is all about information. Since information
However, the term information
includes not just words, numbers, and
INFORMATION NEEDS TO BE PROTECTED
From the standpoint of an
organization, information has value and
All of this must be protected
because organizations are faced with
So how can they protect
themselves? Thats where ISO
STRUCTURE OF ISO IEC 27002
Each section of the ISO IEC
27002 standard has been structured
While we have preserved this general four
part structure, we've
are security objectives that should be achieved.
ALSO SEE OUR ISO 27001 2013 LIBRARY
Updated on December 31, 2016. First published on March 21, 2014.
Legal Restrictions on the Use of
Copyright © 2014 - 2016 by Praxiom Research Group Limited. All Rights Reserved.