This ISO 27001 Glossary provides clear, concise definitions for all key terms in the ISO 27001 standard. An essential resource for professionals, students, or anyone navigating the world of information security, this guide will help you understand the standard and its requirements. It includes every term from access control to vulnerability, serving as a valuable reference.
A
Addressing information security with supplier agreements
Assessment and decision on information security events
B
Business Continuity Plan (BCP)
Business Impact Analysis (BIA)
Business Management System (BMS)
C
Compliance with policies and standards for information security
Contact with special interest groups
D
Documented operating procedures
I
Identification of legal, statutory, regulatory and contractual requirements
Information Security Management System
Information Security Roles and Responsibilities
Information security for use of cloud services
Information security during disruption
Information security in project management
Information security in supplier relationships
Information security incident management planning and preparation
ICT readiness for business continuity
Independent review of information security
E
G
H
L
Learning from information security incidents
M
Managing information security in the ICT supply chain
Monitoring, review and change management of supplier services
N
P
Policies for Information Security
Privacy and protection of PII
Protection of Systems During Audit Testing
R
Risk Owner
Role-based access control (RBAC)
Return of assets
Response to information security incidents
S
Scope Statement
T
Test Information
Threat Intelligence
U
V
Vulnerability