In Reply to Parent Post by somashekar
This is the ISO standard referenced and it is a part of the ISO27000 series.
27001 to 27006.
[perhaps it means 5000 companies certified to ISO 27001
It's actually a lot more than 27001 ~ 27006.
ISO/IEC 27000:2009 - provides an overview/introduction to the ISO27k standards as a whole plus the specialist vocabulary used in ISO27k.
ISO/IEC 27001:2005 is the Information Security Management System (ISMS) requirements standard, hence certifiable
ISO/IEC 27002:2005 is the code of practice for ISMS
ISO/IEC 27003:2010 provides guidance on implementing ISO/IEC 27001.
ISO/IEC 27004:2009 is an ISMS metrics
ISO/IEC 27005:2011 is an information security risk management standard.
ISO/IEC 27006:2007 is a guide to the certification process for accredited ISMS certification or registration bodies.
ISO/IEC 27007 will be a guideline for auditing Information Security Management Systems.
ISO/IEC TR 27008 will guide the auditing of information security controls.
ISO/IEC 27010 will provide guidance on information security management for intersector and inter-organisational communications.
ISO/IEC 27011:2008 is the information security management guideline for telecommunications organizations (also known as ITU X.1051).
ISO/IEC 27013 will provide guidance on the integrated/joint implementation of both ISO/IEC 20000-1 (derived from ITIL) and ISO/IEC 27001 (ISMS).
ISO/IEC 27014 will cover governance of information security
ISO/IEC 27015 will provide information security management guidance for organizations in the financial services industry.
ISO/IEC TR 27016 will cover the economics of information security management.
ISO/IEC 27031 is an ICT-focused standard on business continuity.
ISO/IEC 27032 will provide guidelines for cybersecurity
ISO/IEC 27033 is replacing the multi-part ISO/IEC 18028 standard on IT network security (part 1 released, rest in preparation). New WD of part 5 June 23
ISO/IEC 27034 will provide guidelines for application security.
ISO/IEC 27035 on information security incident management.
ISO/IEC 27036 guideline for security for supplier relationships. New draft of part 1 released to SC27 June 24
ISO/IEC 27037 guideline for digital evidence. June 22 status update
ISO/IEC 27038 specification for digital redaction.
ISO/IEC 27040 guideline on storage security. June 22 status update
ISO 27799:2008 provides health sector specific ISMS implementation guidance based on ISO/IEC 27002
**Credits to Gary Hinson for the above information.