WEBThis document was prepared by Joint Technical Committee ISO/IEC JTC 1, Information Technology, Subcommittee SC 27, Information security, cybersecurity and privacy protection. This third edition cancels and replaces the second edition ( ISO/IEC 27001:2013 ), which has been technically revised.