<p>This document provides guidance to assist organizations to:</p>
<p>— fulfil the requirements of ISO/IEC 27001 concerning actions to address information security risks;</p>
<p>— perform information security risk management activities, specifically information security risk assessment and treatment.</p>
<p>This document is applicable to all organizations, regardless of type, size or sector.</p>
Registration number (WIID)
80585
Scope
<p>This document provides guidance to assist organizations to:</p>
<p>— fulfil the requirements of ISO/IEC 27001 concerning actions to address information security risks;</p>
<p>— perform information security risk management activities, specifically information security risk assessment and treatment.</p>
<p>This document is applicable to all organizations, regardless of type, size or sector.</p>
