At the guts from the standard lie 3 Main concepts: confidentiality, integrity, and availability, frequently known as the CIA triad. To get ISO 27001-compliant, an ISMS needs to be designed and executed in such a way that each of those topline areas is tackled. Instead, when you’re going through your information security danger procedure process