ISO 27002

ISO/IEC 27002 is an information security standard published by the International Organization for Standardization (ISO) and by the International Electrotechnical Commission (IEC), titled Information technology – Security techniques – Code of practice for information security controls.

ISO/IEC 27002:2013 gives guidelines for organizational information security standards and information security management practices including the selection, implementation and management of controls taking into consideration the organization's information security risk environment(s).

It is designed to be used by organizations that intend to:

  1. Select controls within the process of implementing an Information Security Management System based on ISO/IEC 27001
  2. Implement commonly accepted information security controls
  3. Develop their own information security management guidelines
Akamai has historically been assessed annually for compliance with ISO 27002, which defines controls around a company's information security program. For some quick facts about Akamai and ISO compliance, please visit our ISO Compliance page. Our most recent ISO 27002 assessment was completed in October 2017, and we received an executive summary of the report in January 2018 that is available to customers and partners subject to nondisclosure agreements (NDAs) with Akamai. Contact your account team or see the Luna Information Security Compliance Standards area for more information.