Revised Standard from Last Update.

NATIONAL FOREWORD

This Indian Standard (Second Revision) which is identical with ISO/IEC 27001 : 2022 ‘Information security, cybersecurity and privacy protection - Information security management systems - Requirements’ issued by International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) jointly was adopted by the Bureau of Indian Standards on the recommendations of the Information Systems Security and Privacy Sectional Committee, and approval of the Electronics and Information Technology Division Council.

This Standard was originally published in 2005 and was identical with ISO/IEC 27001 : 2005. The first revision of this standard was published in 2015 and was identical to ISO/IEC 27001 : 2013.

The second revision of this standard has been undertaken to align with the latest version of ISO/IEC 27001 : 2022.