- 14 Control Area
- 34 Control Objective
- 114 Control
- ISO/IEC 27001:2013
- Information Technology — Security Techniques — Information security management systems – Requirements. Known as ISO 27001
- ISO/IEC 27002:2013
- Information technology — Security techniques — Code of practice for information security management. Known as ISO 27002