Skip to main content
Back

ISO/IEC 27002:2013

Information technology -- Security techniques -- Code of practice for information security controls

General information

Withdrawn from 15.02.2022
Directives or regulations
None

Standard history

Status
Date
Type
Name
15.02.2022
Main
06.11.2015
Corrigendum
18.09.2014
Corrigendum
25.09.2013
Main
Main
ISO/IEC 27002:2005
ISO/IEC 27002:2013 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).
It is designed to be used by organizations that intend to:

select controls within the process of implementing an Information Security Management System based on ISO/IEC 27001;
implement commonly accepted information security controls;
develop their own information security management guidelines.

Required fields are indicated with *

*
*
*
PDF
82.61 € incl tax
Paper
82.61 € incl tax
Standard monitoring

Customers who bought this item also bought

Main

ISO/IEC 27001:2013

Information technology -- Security techniques -- Information security management systems -- Requirements
Withdrawn from 25.10.2022
Main

ISO/IEC 27017:2015

Information technology -- Security techniques -- Code of practice for information security controls based on ISO/IEC 27002 for cloud services
Newest version Valid from 30.11.2015
Main

ISO/IEC 27018:2014

Information technology -- Security techniques -- Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors
Withdrawn from 15.01.2019
Main

EVS-ISO/IEC 27033-1:2011

Information technology - Security techniques - Network security - Part 1: Overview and concepts
Withdrawn from 15.03.2024