New Standard: ISO/IEC 27001 and related standards Information security management
IT security, cybersecurity and privacy protection are vital for companies and organizations today. The ISO/IEC 27000 family of standards keeps them safe.
ISO/IEC 27001 is the world’s best-known standard for information security management systems (ISMS) and their requirements. Additional best practice in data protection and cyber resilience are covered by more than a dozen standards in the ISO/IEC 27000 family. Together, they enable organizations of all sectors and sizes to manage the security of assets such as financial information, intellectual property, employee data and information entrusted by third parties.- the alignment (or lack thereof) of investment and financing decisions taken by the financier with low-carbon transition pathways, adaptation pathways, and climate goals;
— the impact of actions through the financier’s investment and lending decisions towards the achievement of climate goals in the real economy, i.e. mitigation (greenhouse gas emissions) and adaptation (resilience);
— the risks to owners of financial assets (e.g. private equities, listed stocks, bonds, loans) arising from climate change.
To support the financier’s assessment of the impact of investment and lending decisions, this document provides guidance for the financier on how to:
— set targets and determine metrics to be used for tracking progress related to the low-carbon transition pathways of investees;
— determine low-carbon transition and adaptation trajectories of investees;
— document the causality or linkage between its climate action and its outputs, outcomes and impacts.
This document is applicable to financiers, i.e. investors and lenders. It guides their reporting activities to the following third parties: shareholders, clients, policymakers, financial supervisory authorities and non-governmental organizations.