What is ISO/IEC 27001?

ISO/IEC 27001 is an international standard for improving the cyber resilience of information systems.

Though ISO/IEC 27001 certification is optional, it’s highly recommended because it demonstrates an organization’s exemplary cybersecurity practices.

Key takeaways

  • Check icon
    Organizations that don’t wish to pursue ISO 27001 certification can still apply the framework to improve their security posture
  • Check icon
    ISO 27001 is industry agnostic, any business can improve its cybersecurity with the framework.
  • Check icon
    ISO/IEC 27001 compliance could assist with GDPR compliance.
  • Check icon
  • Check icon
Reviewed by
No items found.
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.
Abstract shapeAbstract shape

More from our blog

Learn more about the latest issues in cybersecurity.
Deliver icon

Sign up to our newsletter

Get the latest curated cybersecurity news, breaches, events and updates in your inbox every week.
Abstract shapeAbstract shape
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Website Security scan resultsWebsite Security scan ratingAbstract shape