Guest user Created: Jul 31, 2019 Last commented: Jul 31, 2019

ISO and IEC

ISO 27001 & 22301

Is it accurate to refer to the Standard as ISO 27001 whereas it's reference number is ISO/IEC 27001?

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Jul 31, 2019

Answer:

Although largely known as ISO 27001, to refer to the Standard only as ISO 27001 is inaccurate.

The full official name of this standard is ISO/IEC 27001:2013, because this standard was developed by a joint technical committee (ISO/IEC JTC 1) formed by these two organizations.

The participation of IEC in the development of this standard helps ensure that its content is aligned with standards developed by IEC without participation of ISO personnel, such as IEC 62351 Power System Control and Associated Communications – Data and Communication Security.

Additionally, not using the official name can lead people not used to ISO documents to the misinterpretation that there are more than one 27001 standard, which is not true.

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jul 31, 2019

Expert Advice Community

ISO and IEC

ISO and IEC

Assign topic to the user

Comment as guest or Sign in

Suggested Topics

ISO/IEC 27001 Audit

ISO/IEC 27001 Implementation

ISO/IEC 27001/2 Harmonization