logo ORSYS Le mag

The training and skills medium

Home > Cybersecurity glossary > ISO 27005 🟦 Standard

ISO 27005 🟦 Standard

La ISO 27005 standard is an international standard that provides guidelines for managing information security risks.

This standard is part of the ISO 27000 family of standards, and complements ISO 9001:2000 and ISO 14001:2000.ISO 27001The standard adopts the PDCA (Plan-Do-Check-Act) model to ensure continuous improvement of the risk management process. The standard adopts the PDCA (Plan-Do-Check-Act) model to ensure continuous improvement of the risk management process.

Its latest version is ISO 27005:2022 standard. It now incorporates elements of the EBIOS Risk Manager methodology, in particular :

  • Linking high-level and low-level risk scenarios
  • The use of strategic and operational risk management cycles
Back to Glossary

field of training

Cybersecurity

associated training

Systems and network security, level 1

Hacking and security, level 1

Information systems security, summary

BEST

Towards the ORSYS Cyber Academy: a free space dedicated to cybersecurity