ISO27001, ISO 27001

ISO 27001 Certification

In terms information security standards, certification is against ISO 27001, which is the specification for an ISMS (Information Security Management System). The scheme is actually fairly mature, having existed with respect to BS7799-2 previously. And of course, 27001 has certain alignmnets in term sof process with ISO 9001, which again, adds a degree of maturity.

With respect to BS7799-2, there is in fact a mechanism in place to hasten transfer of the certification, so by no means do those already certified against this has to start from scratch.

Certification itself is becoming increasingly popular, as security is more often viewed as an enabler, and as a market differentiator. There are in fact several registers of certified organizations around, but unfortunately, as certifications are granted nationally by different bodies, there is no complete global resource.



The W3J.com portal has been continuously serving the IT community since 1996. It has evolved since then and will continue to do so, but will continue to publish high quality information and data. It is also an archive site for various technical newsletters and journals.

ISO 27001 Registrars
Do you work for, or represent, a registrar that handles ISO 27001? If so, you may wish to provide your details, as we will shortly be building a worldwide directory. We can be contacted via the contact page on this site.

Accreditation Bodies
ISO maintain a list of recognized accreditation bodies