ISO/IEC 27001
by Pedro Machado
1. Clause
1.1. Clause 1:Scope
1.2. Clause 2:Normative references
1.3. Clause 3:Terms and definitions
1.4. Clause 4: Context of the organization
1.5. Clause 5:Leadership
1.6. Clause 6:Planning
1.7. Clause 7: Support
1.8. Clause 8: Operation
1.9. Clause 9: Performance evaluation
1.10. Clause 10: Improvement
2. Benefits
2.1. Reduces business risk
2.2. Inspires trust in business
2.3. Helps protect business
2.4. Helps to comply with regulations
2.5. Increases competitive edge
2.6. Reduces the likelihood of mistakes
3. Core concepts
3.1. Context of the organization
3.2. Issues, risks and opportunities
3.3. Interested parties
3.4. Leadership
3.5. Risk associated with threats and opportunities
3.6. Communication
3.7. Documented information
3.8. Performance evaluation
3.9. Risk owner
3.10. Risk treatment plan
3.11. Controls
3.12. Continual improvement