ISO27002 Insights

What is ISO27002?

ISO/IEC 27002 is an international standard that provides guidance for organizational information security standards and information security management practices including the selection, implementation and management of controls, taking into consideration the organization's information security risk environment(s). It is commonly used as a reference for developing and maintaining an Information Security Management System (ISMS) and helps organizations implement, maintain and improve their information security management.

Find organizations using ISO27002 on Sumble →

What other technologies are related to ISO27002?

ISO27002 Complementary Technologies

ISO27005

ISO 27005 provides guidelines for information security risk management, supporting the implementation of ISO 27002.

mentioned alongside ISO27002 in 13% (73) of relevant job posts

ISO 27001

ISO 27001 specifies the requirements for an information security management system (ISMS), while ISO 27002 provides guidelines for information security controls. ISO 27002 details the controls referenced in ISO 27001.

mentioned alongside ISO27002 in 1% (341) of relevant job posts

NIST

NIST provides a broad range of cybersecurity standards and guidelines, including the Cybersecurity Framework, which can be used in conjunction with ISO 27002 for a more comprehensive security approach. It's widely adopted in the US, and offers a comparable approach.

mentioned alongside ISO27002 in 0% (183) of relevant job posts