Guest user Created: Mar 31, 2022 Last commented: Mar 31, 2022

27001 question

Thank you for the rich information provided in the article on the new features of ISO 27001:2022 (https://advisera.com/27001academy/explanation-of-11-new-iso-27001-2022-controls/) Since the new controls introduced are not mandatory, I will like to ask if ISO 27001:2013 LA/LI certificate holders are required to Transit to the new version of the standard. Are companies that are currently certified to ISO 27001:2013 mandated to transit to the new version.

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Mar 31, 2022

In order to keep their certification status, ISO 27001:2013 Lead Auditor certificate holders might need to attend some updated training events (for more information you need to contact your certificate issuer).

Regarding Lead Implementer certificate holders, they will not need to "upgrade" their certificates because there is no such requirement from accreditation bodies.

Regarding the certification of organizations, they will need to transition to the new version if they want to keep their certification. Most probably the transition period will be of twenty-four months after the release of the new version of ISO 27001 (the transition period will be confirmed soon after the release of the new version of the standard).

For further information, see:

11 most important facts about changes in ISO 27001/ISO 27002 https://advisera.com/27001academy/blog/2022/02/09/iso-27001-iso-27002/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Mar 31, 2022

Expert Advice Community

27001 question

27001 question

Assign topic to the user

Comment as guest or Sign in

Suggested Topics

Set of ISO 27001 questions

27001 questions

ISO 27001 question