Back

ISO/IEC 27001:2022 - Information Security Management Systems - A practical guide for SMEs

General information

Valid from 30.04.2024

ICS Groups

03.100.70 Management systems 35.030 IT Security

Directives or regulations

None

Standard history

Status

Date

Type

Name

30.04.2024

Main

ISO/IEC 27001:2022 - Information Security Management Systems - A practical guide for SMEs

Scope
Give feedback

ISO/IEC 27001 handbook guides SMEs in developing and implementing an information security management system (ISMS) to help protect themselves from cyber risks. SMEs account for most businesses worldwide and often have specific needs. We understand the unique challenges SMEs face – whether due to lack of money, resources or a full understanding of the issues – that can lead to security being compromised.

ISO/IEC 27001 is the world’s leading standard for ISMSs, providing organisations with guidance on establishing, implementing, maintaining and continually improving an ISMS. It defines requirements for an ISMS and helps organisations secure their information assets by identifying and managing risks – vital in today’s digital world. The requirements that ISO/IEC 27001 describes are generic and are designed to be both scalable and flexible, and hence apply to all types of organisations, regardless of their size or the nature of their business activities or sector.

Implementing ISO/IEC 27001 means that your organization or business has put in place a system to manage risks related to the security of data owned or handled by the company and that this system respects all the best practices and principles enshrined in the standard.

Required fields are indicated with *

Name *

Contact details *

Comments about standard *

I would like a response to my comments

To receive a copy of this form, enter your e-mail address

Buy / View

PDF

55.07 € incl tax

Standard monitoring

Customers who bought this item also bought

Main

EVS-EN ISO/IEC 27002:2022

Information security, cybersecurity and privacy protection - Information security controls (ISO/IEC 27002:2022)

Newest version Valid from 01.12.2022

Main

EVS-EN ISO/IEC 27001:2023

Information security, cybersecurity and privacy protection - Information security management systems - Requirements (ISO/IEC 27001:2022)

Valid from 15.08.2023

Main

EVS-EN ISO/IEC 27005:2024

Information security, cybersecurity and privacy protection - Guidance on managing information security risks (ISO/IEC 27005:2022)

Newest version Valid from 01.10.2024

Main

EVS-EN ISO/IEC 27701:2021

Security techniques - Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management - Requirements and guidelines (ISO/IEC 27701:2019)

Newest version Valid from 03.05.2021

Standards designation

EVS	Estonian standard
EN	European standard (published by an CEN or CENELEC)
EN ISO	International standard adopted as an European standard
ISO	International Organization for Standardization’s standard
IEC	International Electrotechnical Commission’s standard
HD	CENELEC’s harmonisation document

EVS-EN	European standard implemented in Estonia
EVS-EN ISO	International standard adopted in Europe and implemented in Estonia
EVS-EN ISO/IEC	International standard/International electrotechnical standard adopted in Europe and implemented in Estonia
EVS-IEC	International electrotechnical standard implemented in Estonia
EVS-ISO	International standard implemented in Estonia

A, AMD	amedment
+A	a full standard plus the amendment
/A	only amendment
COR, AC	corrigendum
+COR	a full standard plus the corrigendum
NA	national annex
+NA	a full standard plus the national annex
/NA	only national annex
TS	technical specification
TR	technical report
CWA	agreement, developed by a CEN or CENELEC
prEVS-EN (etc)	draft standard

et	the standard is in Estonian only
en	the standard is in English only
et-en	the standard is in Parallel text Estonian-English

ISO/IEC 27001:2022 - Information Security Management Systems - A practical guide for SMEs