The 2022 version of the standard gives organisations of all sizes, sectors and locations an updated framework to tackle the increasingly complex threat landscape.
The new version of the ISO 27001 standard helps organisations to manage controls more effectively by grouping them into four clear ‘themes’ – organisational, people, technological and physical. This key change aims to achieve greater clarity, focus and accountability for information security within an organisation.
The standard also features the recently updated information security controls outlined by ISO 27002:2022 – representing the most significant revision. There are now 93 controls instead of 114; 11 are new additions, whilst others have been merged or removed.
For more information about the certification process and the transition process for existing certified organisations please don’t hesitate to contact us.