ISO 27001 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system in order to safeguard the confidentiality, integrity and availability of the information.
The ISO/IEC 27001 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.