ISO/IEC 27001 – Information Security Management

ISO/IEC 27001 certification positions organisations to mitigate information security and cybersecurity risk.

ISO/IEC 27001, often abbreviated as ISO 27001, was published collaboratively by the International Organization for Standardization (ISO) and the International Electrotechnical Commission (IEC) with the intent to help organisations mitigate the risk of privacy and data breaches. Information security breaches may result in the loss of millions, even billions of private organizational records and sensitive customer data. Companies are under intense global pressure to demonstrate they are effectively and competently safeguarding against data breaches.

Companies worldwide have responded to the pressures by implementing ISO/IEC 27001, the only auditable international standard that defines the requirements of an information security management system. It is a documented set of policies, procedures, processes and systems that manages the risks of data loss from cyber-attacks, hacks, data leaks or theft.

The ISO/IEC 27001 standard formally specifies the implementation of a management system and provides organizations with the requirements needed to bring information security risks under management control. The standard uses an integrated risk management framework of policies and procedures that includes all legal, physical and technical controls involved in an organization's management processes. The standard applies to all organizations, regardless of size, industry or business type. Companies can use ISO/IEC 27001 certification to demonstrate the maturity of their information security environment, meet contractual obligations, or gain a competitive uniqueness.

ISO/IEC 27001 Certification with Intertek

Worldwide, suppliers and business partners concerned with information security, throughout their supply chain or network, are increasingly demanding certification to ISO/IEC 27001. Certification to ISO/IEC 27001 by an accredited and respected certification body, such as Intertek, promotes an organisation's positive brand image and validates a commitment to intently addressing information security management.

Intertek has helped organizations all over the world achieve ISO/IEC 27001 certification smoothly and efficiently. We've done more than issue a certificate: we've given them the tools to minimise security risks to the business. Our third-party auditing services provide an independent assurance that your customers and stakeholders demand.

Additional Resources and Information on ISO/IEC 27001

Learn more about ISO/IEC 27001 from the International Organization for Standardization

Learn more about the ISO/IEC 27000 family of standards from the International Electrotechnical Commission

SAI Global Standards is an Intertek company - Access and purchase ISO/IEC 27001 standard in a format that suits your needs

Need help or have a question? +1 800 810 1195

Need help or have a question?

+1 800 810 1195
+44 (0) 116 296 1620
+61 (0) 2 8039 8111
+46 8 750 03 33
Asia Pacific
+86 21 50273066

Auditing and System Certification Services