Skip to main content

New and revised ISO/IEC 27001:2022

02.11.2022
Alternate Text

To address global cybersecurity challenges and improve digital trust, a new and improved version of ISO/IEC 27001 has just been published. The world’s best-known standard on information security management helps organisations secure their information assets – vital in today’s increasingly digital world.

Cybercrime is growing ever more severe and sophisticated as hackers develop more advanced cybercrime techniques. The World Economic Forum’s Global Cybersecurity Outlook report indicates that cyber-attacks increased 125 % globally in 2021, with evidence suggesting a continued uptick through 2022. In this fast-changing landscape, leaders must take a strategic approach to cyber-risks.

To address these cybersecurity challenges, organisations must enhance their resilience and implement cyber threat mitigation efforts.

How will ISO/IEC 27001 benefit your organisation?
  • Secure information in all forms, including paper-based, cloud-based and digital data
  • Increase resilience to cyber-attacks
  • Provide a centrally managed framework that secures all information in one place
  • Ensure organisation-wide protection, including against technology-based risks and other threats
  • Respond to evolving security threats
  • Reduce costs and spending on ineffective defence technology
  • Protect the integrity, confidentiality and availability of data
  • Organisations that adopt cyber resilience quickly emerge as leaders in their industry.

Organisations that adopt cyber resilience through confident vulnerability quickly emerge as leaders in their industry and set the standard for their ecosystem. The holistic approach of ISO/IEC 27001 means that the entire organisation is covered, not just IT. People, technology and processes all benefit.

When you use ISO/IEC 27001, you demonstrate to stakeholders and customers that you are committed to managing information securely and safely. It’s a great way to promote your organisation, celebrate your achievements and prove that you can be trusted.

Other related standards:
  • ISO/IEC 27000 Information technology — Security techniques — Information security management systems — Overview and vocabulary
  • ISO/IEC 27002 Information security, cybersecurity and privacy protection — Information security controls 
  • ISO/IEC 27003 Information technology — Security techniques — Information security management systems — Guidance
  • ISO/IEC 27004 Information technology — Security techniques — Information security management — Monitoring, measurement, analysis and evaluation
  • ISO/IEC 27005 Information security, cybersecurity and privacy protection — Guidance on managing information security risks