BS ISO/IEC 27000:2014
Information security management systems – Overview and vocabulary
What is it?
BS ISO/IEC 27000:2014 serves two functions:
- It provides an introduction to and overview of all the 27000 series of Information Security Management System (ISMS) standards
- It contains definitions for the specialist terminology used throughout the 27000 series of standards
How does it work?
In order to ensure consistency of terminology across all the ISO/IEC 27000 series of standards, ISO/IEC 27000:2014 defines the specialist technical terms used by all ISMS standards. All other ISO/IEC 27000 series standards refer to ISO/IEC 27000 for these core definitions.
ISO/IEC 27000 also contains an overview of all the other ISO/IEC 27000 series standards, in each case defining the objectives and intended purpose.
Who should buy it?
Anyone who uses 27000 series standards for the purposes of building an ISMS needs to ensure that they understand the specialist vocabulary used in those standards. They also need to know what other members of the 27000 series of standards may be helpful, or essential, for their purposes. This standard gives them that information.
See the preview for contents
Revision
ISO/IEC 27000:2014 is currently being revised to reflect recent updated versions of other 27000 series standards. However, the current edition reflects and is consistent with ISO/IEC 27001:2013 and ISO/IEC 27002:2013.