Terms and definitions
This section defines information security, risk assessment and risk management, within the context of the standard.