• (0)

    ISO 27001 & ISO 22301 Blog

    Is ISO 27001 among the top ISO standards?

    Do you know which ISO standards are the most popular? And whether ISO 27001 is among the most popular? There is both good and bad news for information security enthusiasts – ISO 27001 really is among the most popular, but it is insignificant compared to, say, ISO 9001.

    Top ISO standards

    Unfortunately, there is no official data that is more current, but according to a 2011 ISO survey, these are the most popular standards worldwide:

    • ISO 9001 (quality management): 1,111,698 certificates
    • ISO 14001 (environmental management): 267,457 certificates
    • ISO/TS 16949 (quality management for automotive-related products): 47,512 certificates
    • ISO 13485 (quality management for medical devices): 20,034 certificates
    • ISO 22000 (food safety management): 19,980 certificates
    • ISO/IEC 27001 (information security management): 17,509 certificates

    Note: this survey did not include ISO 22301, since it was published in 2012.

    Trend looks good for ISO 27001

    When we look at the trends, the situation is a bit better – ISO 27001’s growth rate is among the highest, while at the same time showing the most stable growth among all the top standards (growth in % compared to previous year):


    ISO 27001 by country

    Since this is a very common question, let’s see in which countries ISO 27001 was the most popular (in 2011):

    ISO 27001 by country

    The future

    In my opinion, ISO 27001 will most probably continue its high growth, especially due to cybersecurity threats and an ever-growing reliance on information technology. Most likely it won’t become as popular as ISO 9001, but my guess is it will probably reach place #3 (right behind ISO 9001 and ISO 14001) in the next couple of years, and stay there for a long time.

    The areas where the number of certificates will grow the most are certainly China and India, but perhaps also the United States and Latin America. What do you think?

    Advisera Dejan Kosutic
    Dejan Kosutic
    Dejan holds a number of certifications, including Certified Management Consultant, ISO 27001 Lead Auditor, ISO 9001 Lead Auditor, and Associate Business Continuity Professional. Dejan leads our team in managing several websites that specialize in supporting ISO and IT professionals in their understanding and successful implementation of top international standards. Dejan earned his MBA from Henley Management College, and has extensive experience in investment, insurance, and banking. He is renowned for his expertise in international standards for business continuity and information security – ISO 22301 & ISO 27001 – and for authoring several related web tutorials, documentation toolkits, and books.