Defines the overview of information security management systems, and terms and definitions commonly used in the ISMS family of standards. Pertains to all types and sizes of organization (e.g. commercial enterprises, government agencies, not for profit organizations).