ISO/IEC 27001:2022
- By : Admin
- 17 November 22, 11:36
ISO/IEC 27001 is used to establish, implement and improve an organizations Information Security Management System. This standard has been updated on October 25, 2022.
The main change to the 2022 edition of ISO/IEC 27001 is the update of Annex A to reflect ISO/IEC 27002:2022. In addition, there are additional requirements related to cybersecurity control and privacy protection.
The transition period to ISO/IEC 27001 is three years from the date of publication of ISO/IEC 27001:2022 no later than October 2025. Organizations that have been ISO / IEC 27001: 2013 certified can still use this standard until October 2023. Effective October 2023, all audits must refer to the ISO/IEC 27001:2022 standard.