This standard establishes requirements for the effective management of information security via an Information Security Management System (ISMS), and provides the foundations for an effective security program.

This standard-establishes additional requirements for the management of cloud infrastructure

This standard provides additional requirements for effective management of privacy within cloud environments.