ISO2700 is a specification for an information security management system. It was developed to provide a model for establishing implementing, operating, monitoring and maintain an information security management system.
The specification comprises of details for documentation, management responsibility, internal audits and corrective and defensive action. It is a framework which can assist an organisation to manage and protect their information assets so that they remain safe and secure. It is also used to show customers that information and data are protected.
ISO2700 is used widely in a number of industries for data protection, so it is important for those within Cybersecurity jobs to have a basic understanding of ISO2700.