ISO/IEC 27001 is an international standard for information security management. In 2005, the International Organization for Standardization and the International Electrotechnical Commission jointly released the standard, which was then amended in 2013.