Information security management systems -- Requirements

Document Information

GSC Classification OFFICIAL
Access Policy Open
Reference bps01657-0000-00
Document Status Review Status
Primary Classification
Author Organisation International Standards Organisation
Sponsor OrganisationNot Known
Trustee NPTC Standards Working Group,

Copyright Notice Copyright (c) 2016 National Police Technology Council (NPTC) group and the persons identified as the document authors. All rights reserved.


The requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001-2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.


The usage scenarios for bps01657-0000-00 have not been documented yet.

Normative References

bps01657-0000-00 link




Obsoleted By



We’d love you to discuss this item but please be aware that these discussions are publicly accessible.