The new version of ISO/IEC 27000:2018 was released in February, with the revision providing an overview of information security management systems (ISMS) and terms and definitions commonly used in the ISMS ISO/IEC 27001 family of standards.
ISO/IEC 27000:2018 is designed to be applicable to organizations of all types and sizes—from multinational business to small and medium-sized enterprises. The revised standard is also equally valuable to government agencies and not-for-profit organizations.
ISO/IEC 27000:2018 was developed by joint technical committee ISO/IEC JTC 1, Information technology, subcommittee SC 27, IT security techniques, whose secretariat is held by DIN, the ISO member for Germany.
There are more than a dozen standards in the ISO 27000 family. ISO/IEC 27000 provides an understanding of how the standards fit together, including their scopes, roles, functions, and relationship to one other.
The ISO/IEC 27001 community will find this standard useful, as it combines the essential terminology used by other standards in the ISO/IEC 27000 family.