Which of the following is an information security management system standard published by the International Organization for Standardization?

Which of the following is an information security management system standard published by the International Organization for Standardization?
A . ISO9008
B . ISO27001
C . ISO5501
D . ISO22301

Answer: B

Explanation:

ISO/IEC 27001:2022 is an information security management system standard published by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC). It specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The standard is intended to be applicable to all organizations, regardless of type, size or nature. ISO/IEC 27001:2022 is part of the ISO/IEC 27000 family of standards, which provide a comprehensive framework for information security management.

Reference: [CQI & IRCA Certified ISO/IEC 27001:2022 Lead Auditor Training Course], ISO/IEC 27001:2022 Information technology ― Security techniques ― Information security management systems ― Requirements, ISO/IEC 27000 family – Information security management systems

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments