ISO-27001-2022
ISMS — worldwide certifiable standard.
Definition
ISO 27001:2022 reduces Annex A from 114 to 93 controls grouped into 4 themes: Organisational (37), Personnel (8), Physical (14), Technological (34). Transition period until October 2025. Certifiable by accredited bodies (BSI, Bureau Veritas, DNV).
Origin
Published 25 October 2022 by ISO ; corrigendum 1 issued 2023.
Example in context
An EDI operator certified ISO 27001:2022 demonstrates to clients the maturity of its ISMS for hosting confidential flows.
Related terms
- ISO 27002 — technical controls.