Abstract
ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.
..... As a curtain raiser, this is what is said in the IS
rg in the abstract for ISO/IEC 27001:2013.
You can see more in the ppt that is available in
GOOGLE SEARCH LIST HERE