shape

ISO 27001

ISO 27001 :2022

About:

ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection management system is the primary international standard focused on information security.

This ISO27001:2022 standard was developed to help businesses of all sizes and in all industries to protect their information in an organized and cost-effective manner by implementing an information security management system.

An ISO 27001 certified organization is globally credible. ISO27001 certification is a business differentiator and shows other organizations that they can trust your organization to manage their valuable assets/data and intellectual property. This facilitates getting new opportunities while protecting your business from risk

Advantages ?

  • Win new business and preserve loyal customers.
  • Avoid financial losses and penalties associated with data breaches
  • Protect and enhance your reputation
  • meet business, legal, contractual and regulatory requirements
  • Improve business structure
  • Reduce the need for frequent customer audits
  • get independent opinion on your level of security

New in the 2022 version of ISO27001

     ▶️ the security measures in appendix A derive from the ISO 27002 version 2022 standard:

  • 93 measures instead of 114
  • 04 types of measures (instead of 14): Organizational, people, physical, technological

     ▶️ 11 new measures:

  • threat intelligence
  • use of cloud services
  • preparation of ICT
  • physical security
  • configuration management
  • suppression of information
  • data masking
  • Data leak prevention
  • monitoring activities
  • web filtering
  • secure coding

      ▶️ The relevant requirements of the interested parties are to be dealt with by the ISMS (§ 4.2)

      ▶️ new requirement for change planning – changes (6.3)

      ▶️ addition of controlling external processes, products and services (§ 8.1)

      ▶️ the results of the monitoring, measurement, analysis and evaluation methods must be comparable and reproducible(§ 9.1)

      ▶️ changes in the needs and expectations of interested parties must be taken into account in the management review (§ 9.3)

Transition schedule

The new version of ISO/IEC 27001 was published on October 25, 2022. The transition period is set at 3 years. Current certificates from 2013 must therefore transition to the new version before November 2025.

How we can support you

Whether you are currently ISO/IEC 27001 certified or new to the standard, InterCert Advancy can support your information security management system certification and transition.

If you are preparing for the transition from the 2013 version to the 2022 version of ISO27001, we can support you with:

  • Training where you learn about the overhaul and get a basic overview of the main changes and the transition process.
  • Complete and certifying training on the requirements of the new ISO27001 standard
  • The qualification of your internal auditors according to the last version of the ISO27001 standard
  • The qualification of third-party auditors according to the last version of the ISO27001 standard
  • Carrying out a transition audit to bring your certification into line with the new version of the standard.

Why choose us ?

  • International recognition for ISO 27001 certification
  • Extensive experience in the field of ISO27001 certification
  • Auditors issued from the IT field and well trained on the new features of the new version of ISO27001.
  • Very competitive costs and irreproachable responsiveness during the certification process

Accrediation

  Important Links

Contact

  • contact@inter-certification.com

  • Residence Ameni . road Afrane KM 6 Sfax-Tunisia

  • Avenue 18 January , Ariana center staircase C, office C408, 2080 Ariana- Tunisia

InterCer Advancy All Rights Reserved            DisclamerPrivacy PolicyTerms & conditionscookie Policy