Your security and compliance glossary

All the terms you need to know when you’re trying to get compliance audit ready, fast.

Show filters

What is ISO 27001?‍‍

ISO 27001 is a framework for managing IT security and sets out the specification for an information security management system (ISMS) that helps keep consumer data safe. Following the completion of an audit, an organization can be ISO 27001 certified by an auditor.

An accepted standard for organizations doing business outside of the United States, ISO 27001 proves your security to potential customers and businesses. Compliance with a world-class standard like ISO 27001 indicates a secure, reliable organization that can be trusted with customer data.

Who Needs ISO 27001 Certification?

ISO 27001 is a highly renowned standard across many industries and it has allowed businesses worldwide to secure their information systems and win the trust of their clients and partners. Find out why you may need ISO 27001 certification and how it can help your business.

ISO 27001 Requirements

ISO 27001 is unique because not all of the standards must be implemented in order for your organization to be certified as compliant. In that case, what are ISO 27001 controls and what are ISO 27001 requirements? There are 114 controls in total among 14 categories, and the ISO 27001 Security Standard requires that you assess your organization, your data, and your information security management system, implementing the controls that make sense for your business.

How do you assess ISO 27001 success?

The goal of ISO 27001 is to secure your data and information systems, but how do you determine whether it is effective in your case? Every business needs to determine the top key performance indicators or KPIs that reflect their ISMS’s effectiveness. These key performance indicators for measuring ISO 27001 effectiveness will vary based on each business’s ISMS, but tracking these metrics is critical for keeping your system secure and is a vital part of ISO 27001 compliance.





Additional resources you might like:

Compliance
Event
How to Automate ISO 27001 & SOC 2 Compliance

Curious about why compliance is so important, which businesses need it, and how Vanta's automation can help you quickly achieve it? Join Vanta’s 45-minute live product demo. Two of our team members will walk you through the platform and answer your questions in real time.

Compliance
Event
How to automate SOC 2 & ISO 27001 compliance

Curious about why compliance is so important, which businesses need it, and how Vanta's automation can help you quickly achieve it? Join Vanta’s 45-minute live product demo on July 9th at 11 am PST. Two of our team members will walk you through the platform and answer your questions in real time.

Compliance
Event
How to Automate ISO 27001 & SOC 2 Compliance

Curious about why compliance is so important, which businesses need it, and how Vanta's automation can help you quickly achieve it? Join Vanta’s 45-minute live product demo. Two of our team members will walk you through the platform and answer your questions in real time.

Additional resources you might like:

Compliance
Event
How to Automate ISO 27001 & SOC 2 Compliance

Curious about why compliance is so important, which businesses need it, and how Vanta's automation can help you quickly achieve it? Join Vanta’s 45-minute live product demo. Two of our team members will walk you through the platform and answer your questions in real time.

Compliance
Event
How to automate SOC 2 & ISO 27001 compliance

Curious about why compliance is so important, which businesses need it, and how Vanta's automation can help you quickly achieve it? Join Vanta’s 45-minute live product demo on July 9th at 11 am PST. Two of our team members will walk you through the platform and answer your questions in real time.

Compliance
Event
How to Automate ISO 27001 & SOC 2 Compliance

Curious about why compliance is so important, which businesses need it, and how Vanta's automation can help you quickly achieve it? Join Vanta’s 45-minute live product demo. Two of our team members will walk you through the platform and answer your questions in real time.

Compliance
Event
ISO 27001 vs. SOC 2: Which standard is right for my startup?

Starting a security compliance program requires time, effort, and planning. And knowing where to begin is half the battle. Are you wondering if your organisation should focus on ISO 27001? SOC 2? Both?

Product updates
Event
What's New in Vanta: June

Are you curious about new Vanta features? Register for our "What's New in Vanta: June" webinar.

Compliance
Event
How to automate ISO 27001 and SOC 2 compliance

Join Vanta’s 45-minute live product demo on 2 July at 11 am BST. Two of our team members will walk you through the platform and answer questions throughout the session.

Compliance
Event
Unlocking the Full Potential of Vanta's AWS Integration

AMAA webinar: Simplify your AWS integration experience and overcome common setup challenges with our interactive webinar featuring experts from Vanta and AWS. Get essential tips for first-time AWS connections, learn to integrate services like EKS, IdentityStore, CodeCommit, and more, and stay updated with CIS Benchmarks. Register today to secure your spot or receive the recording if you can't attend live.

Security
Guide
GRC implementation guide

Create a more scalable and resilient security program by implementing a GRC framework that aligns with your organization's needs.

Security
Blog
The state of trust in an AI world: VantaCon UK recap

Security and compliance experts share their insights and analysis of key findings from Vanta’s State of Trust Report in this VantaCon UK panel.

Get compliant and
build trust, fast.

Two wind turbines on a white background.
Get compliant and build trust,
fast.
Get started