Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » ISO 27001 » ISO 27001 Domains

ISO 27001 Domains

The ISO 27001 is divided into 14 domains. The reason why ISO 27001 is divided into these domains is that it gives a more structured approach towards a holistic framework, and each one of these domains handles a significant part of the objectives.

ISO 27001 Domains are: 

  • Risk Assessment and Management
  • Security Policy Development
  • Organizational Security
  • Human Resource Security 
  • Asset Management 
  • Access Control
  • Cryptography 
  • Physical and Environmental Security
  • Operations Security
  • Communications Security
  • System Acquisition
  • Development and Maintenance
  • Supplier Relationships
  • Information Security Incident Management
  • Business Continuity Management

These domains ensure personnel, data, controls, and systems security, develop incident response strategies for potential breach scenarios and help maintain consistency throughout the operations and your overall enterprise environment.

Additional reading

healthcare GRC software
Blogs

12 Best Healthcare GRC software

The healthcare industry has seen a surge in cyber incidents with over 700 data breaches disclosed publicly in 2022. This pattern is steadily rising since 2019. These breaches have underscored the urgent need for a strong governance, risk, and compliance measures across all organizations, especially the highly regulated ones.  Healthcare GRC software has emerged as…
pyramid with influence of change management in GRC
Blogs GRC

Regulatory Change Management For GRC Leaders 

Imagine this: You’re a 500-person company with ten departments, rolling out GDPR protocols since you’re expanding in the EU. A support employee working on a customer ticket downloads a file with personal data to get a “quick, unofficial second opinion.” Seems innocent enough, right? But in the GRC world, that’s a major red flag. So…
DPF
Blogs Cloud compliance

Quick Guide: How to Implement Data Privacy Framework? 

Did you know that 76% of users think companies should do more to safeguard their data online? But here’s the big question: Are you doing everything you can to protect your client’s data? If you’re uncertain, examining your current practices more closely is crucial.  As organizations increasingly rely on data-driven processes, safeguarding personal and confidential…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales