The difference between ISO20000 certification and ISO27000 certification

ITSM is an organization-oriented IT service management standard, which aims to provide a model for establishing, implementing, running, monitoring, evaluating, maintaining and improving IT service management systems. The establishment of IT service management system (ITSM) has become an indispensable mechanism for all kinds of organizations, especially financial institutions, telecommunications and high-tech industries. O 20000 provides IT managers with a reference framework for managing IT services, and a perfect IT management level can also be demonstrated through certification.

The name of ISO/IEC2700 1:2005 is "Information Technology-Security Technology-Information Security Management System-Requirements", which can be translated as "Information Technology-Security Technology-Information Security Management System Requirements". It stipulates the requirements of information security management system and information security control, and is the basis for organizing a comprehensive or partial evaluation of information security management system. It can be used as a standard for evaluating and authenticating an organization's comprehensive or partial information security management system.

The former aims at overall information service management, while the latter aims at information security management.

The certification fee is related to the enterprise scale and specific business.