This paper reviews the academic literature on ISO/IEC 27001, identifying research themes and sub-themes to inspire future interdisciplinary studies at the crossroads of information security and quality management.

The ISO/IEC 27001 information security management standard: literature review and theory-based research agenda

ISO 27001 certification in the IT sector enhances data privacy, accessibility, and authenticity, making companies more resilient against information security threats and cyberattacks.

The ISO/IEC 27001 Information Security Management Standard: How to Extract Value from Data in the IT Sector

Sweden, the United Kingdom, and Malaysia are the most heavily implementing ISO/IEC 27001 family standards in their information security policies, affecting their GCI rank in legal measures.

The Use of ISO/IEC 27001 Family of Standards in Regulatory Requirements in Some Countries

ISO 27001 is a globally accepted standard for information security, promoting quality, safety, and commitment in companies' products and services.

INFORMATION SECURITY AND ISO 27001

Implementing ISO/IEC 27001 standard effectively enhances enterprise security by addressing all 21 requirements and developing effective information security management system (ISMS) policies using the PDCA model.

Enhance Enterprise Security through Implementing ISO/IEC 27001 Standard

ISO/IEC 27001:2022 is a slight improvement over ISO/IEC 27001:2013, introducing eleven new security controls and addressing cloud computing service protection.

Management of enterprise cyber security: A review of ISO/IEC 27001:2022

ISO 27001 certification did not show a significant impact on firm performance, as good information security management was perceived as an obligation rather than a competitive advantage.

The Impact of ISO 27001 Certification on Firm Performance

Implementing ISO 27001 in a company can reduce costs and potential damage by identifying vulnerabilities, assessing risk, and implementing the standard compared to not implementing.

Math approach of implementing ISO 27001

ISO 27001 accreditation levels remain low due to its reputation for taking a lot of time and effort, but market forces are starting to drive change.

Is ISO 27001 worth it

The new versions of ISO /IEC 27001:2022 and ISO /IEC 27002:2022 significantly changed the information security standards, mainly in Annex A, impacting organizations applying them in their business operations.

Spremembe, ki jih prinašajo nove različice v družini standardov za informacijsko varnost ISO/IEC 27000

ISO 27001 certification improves information security management, reducing risks and enhancing internal controls, while also identifying gaps and opportunities for further improvement.

EFFECTIVENESS OF ISO 27001, AS AN INFORMATION SECURITY MANAGEMENT SYSTEM: AN ANALYTICAL STUDY OF FINANCIAL ASPECTS

ISO 27001 compliant Information Security Management Systems support digital forensic investigations by providing pre-incident planning, controls, and a favorable management environment.

ISO 27001 as a Support to Digital Forensics

The ISO 27001 framework can effectively secure e-voting infrastructure by considering high-level guidelines and considering essential information security aspects.

ISO 27001 Framework for Securing Election Infrastructure and Machine Voting

This paper helps organizations identify PAM solutions that meet ISO 27001:2013 control, aiding in the implementation of an Information Security Management System (ISMS).

Assessing Privileged Access Management (PAM) using ISO 27001:2013 Control

ISO/IEC 27000, 27001, and 27002 are international standards that guide organizations in developing and maintaining effective information security management systems, providing evidence of their security measures.

ISO/IEC 27000, 27001 and 27002 for Information Security Management

ISO 27001 and the ISO 27000 series are important tools for information security managers to explore, as they can strengthen their ability to manage information security effectively.

ISO Standards and Certification

ISO/IEC 27001 standard effectively implements an Information Security Management System (ISMS) to manage and protect information assets, ensuring a competitive advantage over competitors.

15. ISO/IEC 27001

National cultural dimensions significantly impact the success and effectiveness of ISO 27001 development, particularly in SMEs.

The Effects of Cultural Dimensions on the Development of an ISMS Based on the ISO 27001

ISO 27001 certification positively impacts financial performance, but not publicizing it can negatively affect it, with the effect increasing over time.

Research on the Impact of Information Security Certification and Concealment on Financial Performance: Impact of ISO 27001 and Concealment on Performance

The improved ISO 20000 standard, based on ISO 27001 recommendations, provides better information security for IPTV/VoIP services in telecom operators compared to the previous model.

Development of a new improved model of ISO 20000 standard based on recommendations from ISO 27001 standard

These studies suggest that ISO 27001 enhances data privacy, accessibility, and authenticity, promotes global information security standards, and improves enterprise security, though its impact on firm performance is debated.