What is ISO 27001?
It is a part of the ISO 27000 family of standards. It is an information security standard which aids in protecting information used in businesses everyday. It provides a prescription of the features of an effective information security management system. ISO 27001 states what is expected of an Information Security Management System (ISMS). This means that, in order to receive certification or to pass an audit, your ISMS must conform to these requirement.