How many controls does ISO/IEC 27010:2015 have?

ISO/IEC 27010:2015 contains 25 controls organized across 6 domains.

Where does ISO/IEC 27010:2015 apply?

ISO/IEC 27010:2015 is applicable in International. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does ISO/IEC 27010:2015 map to?

ISO/IEC 27010:2015 has control-to-control mappings with 433 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with ISO/IEC 27010:2015 compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

ISO/IEC 27010:2015

ISO/IEC 27010 provides guidelines for information security management for inter-sector and inter-organizational communications. It extends ISO 27001/27002 guidance for situations where organizations share information across sector boundaries, within communities of interest, or between organizations.

Domains

Clause 17-18 and Annexes: Continuity and Compliance

Clause 14-16: System Development, Supplier Relations, and Incident Management

Clause 11-13: Physical, Operations, and Communications Security

Clause 9-10: Access Control and Cryptography

Clause 7-8: Human Resources and Asset Management

Frequently Asked Questions

Map ISO/IEC 27010:2015 to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform