BS ISO/IEC 27013:2015 Information technology. Security techniques. Guidance on the integrated implementation of ISO 27001 and ISO 27001-1

BS ISO/IEC 27013:2015

Information technology. Security techniques. Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1

Status : Current, Under review   Published : December 2015



What is this standard about?

This international standard gives up-to-date guidance on how to implement both BS ISO/IEC 27001(on information security) and ISO/IEC 20000 1 (on service management), in order to build an integrated management system.

Who is this standard for?

  • Anyone implementing, or thinking of implementing, information security and service management systems 
  • All organizations involved in auditing integrated management systems
  • All organizations involved in auditor certification, training, or registration of management systems
  • Anyone involved in conformity assessment 

Why should you use this standard? 

The relationship between information security management and service management is so close that many organizations already recognize the benefits of adopting both BS ISO/IEC 27001 and BS ISO/IEC 20000-1. It’s common for an organization to improve the way it operates to achieve conformity with the requirements specified in one of these international standards and then make further improvements to achieve conformity with the requirements of the other.

There are a number of advantages in implementing an integrated management system that takes into account not only the services provided but also the protection of information. These include credibility for an effective and secure service to both internal and external customers, lower costs of an integrated programme, reduced implementation time due to the integrated development of processes common to both standards and promoting understanding between service management and security personnel.

What’s changed since the last update?

  • The standard has been systematically reviewed by experts, who have taken into consideration recent technological and industry developments
  • This second edition replaces the 2012 edition

Standard NumberBS ISO/IEC 27013:2015
TitleInformation technology. Security techniques. Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1
StatusCurrent, Under review
Publication Date31 December 2015
Normative References(Required to achieve compliance to this standard)ISO/IEC 27001:2013, ISO/IEC 20000-1:2011, ISO/IEC/TR 20000-10, ISO/IEC 27000:2014
Informative References(Provided for Information)ISO/IEC/TR 20000-9, ISO 19011, ISO/IEC 27004, ISO/IEC 20000-2, ISO/IEC/TS 15504-8, ISO/IEC/TR 20000-4, ISO/IEC 27014, ISO 9000, ISO/IEC 27006, ISO/IEC/TR 90006, ISO Guide 73:2009, ISO/IEC 27007, ISO/IEC 27005, ISO/IEC 20000-3, ISO/IEC 27002, ISO/IEC/TR 20000-5, ISO/IEC/TR 27008, ISO/IEC 27010, ISO/IEC 27004:2016, ISO 31000:2018, ISO/IEC 27003:2017
ReplacesBS ISO/IEC 27013:2012
International RelationshipsISO/IEC 27013:2015
Draft Superseded By15/30299325 DC
DescriptorsComputers, Computer networks, Anti-burglar measures, Management, Information exchange, Vocabulary, Data processing, Data storage protection, Computer technology, Data security
Title in FrenchTechnologies de l’information. Techniques de sécurité. Guide sur la mise en oeuvre intégrée d’ISO/IEC 27001 et ISO/IEC 20000-1
ISBN978 0 580 86245 8
File Size2.165 MB

 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents

Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version

Develop a PAS

Develop a fast-track standardization document in 9-12 months

Worldwide Standards
We can source any standard from anywhere in the world

Customers who bought this product also bought