ISO 27001 : 2022 -
Information Security Management Systems

ISO 27001 2022

ISO 27001:2022 is the world’s best-known standard for information security management systems (ISMS). It defines requirements an ISMS must meet.

The ISO 27001:2022 standard provides companies of any size and from all sectors of activity with guidance for establishing, implementing, maintaining and continually improving an information security management system.

Why is ISO 27001 important ?

For Ensures compliance with legal and regulatory requirements many countries and industries have specific data protection laws and regulations that organizations must comply with. It helps organizations meet these requirements and demonstrate their commitment to information security.

It is an international standard that provides a framework for Information Security Management Systems (ISMS).

It plays a crucial role in preventing cybercrime. Cybercrime is a growing threat to organizations, and implementing It can help prevent data breaches and other security incidents.

ISO 27001 2022

Introduced 11 new Controls in ISO 27001 2022 :

A.5.7

Threat intelligence

A.5.23

Information security for use of cloud services

A.5.30

 ICT readiness for business continuity

A.7.4

Physical security monitoring

A.8.9

Configuration management

A.8.10

Information deletion

A.8.11

Data masking

A.8.12

Data leakage prevention

A.8.16

Monitoring activities

A.8.23

Web filtering

A.8.28

Secure coding

Annex A

Annex A is a critical component of the ISO 27001 standard. It contains a comprehensive set of controls that organizations can use to establish and maintain an effective information security management system (ISMS). Annex A has seen the greatest change. The updated version of ISO 27001 Annex A has been completely restructured and revised. As a result, the number of controls has decreased from 114 to 93 in the new version of ISO 27001. Also, these security controls are now divided into four sections instead of the previous 14.

Section 5

Organizational
(37 controls)

Section 6

People
(8 controls)

Section 7

Physical
(14 controls)

Section 8

Technology
(34 controls)

Achieve your Cyber Security Compliance

Why you need us ?

  • Resilience to cyber-attacks

  • Preparedness for new threats

  • Data integrity, confidentiality and availability

  • Security across all supports

  • Organization-wide protection

  • Cost savings

CONTACT US

USEFUL LINKS

A Premier Cybersecurity consulting and GRC Compliance Company