ABSTRACT
This entry discusses the International Organization for Standardization (ISO) standards and how to become certified. After giving a history and background of ISO standards, the author discusses ISO 27001, 27002, and 27000 series as well as the standards that accompany them. The entry also details the relationship to other standards and why a new ISO standard, ISO 27001, is being considered for implementation. The author discusses what the future may hold for ISO standards in the United States and concludes that security managers should take the time to explore ISO 27001 and the ISO 27000 series as important tools that can help strengthen their ability to manage information security.
