ISO 27000

Definition: ISO 27000/IEC (affiliated with Information Security Management Systems) is the latest iteration of the International Standards Organization's efforts to specify a comprehensive set of security practices. The new series is presently under development and may be reviewed at www.iso.org. The new standards have controls and objectives and introduce PDCA (Plan-Do-Check-Act) methodology. The topics associated with evolving standards have a broader scope and the objective providing definitions for information security terms as well as support for specific industry sectors and more detailed guidance as well as utilizing gap analysis to help pinpoint weaknesses.

Its Relevance: The new International Standards Organization standard for information security is much broader and more relevant for business, industry and government use. Information security for one specific sector that is covered is healthcare informatics. More and more business organizations are adopting the ISO 27000 series of security controls.

Return from "ISO 27000" to Words [G - I]