Is there a difference between ISO 27002 and Annex A?
Assign topic to the user
The difference between ISO 27001 Annex A and ISO 27002 is that while ISO 27001 Annex A defines control objectives, ISO 27002 provides orientation and guidance on how to implement the controls listed in ISO 27001 Annex A (the controls objectives are exactly the same in both standards).
This article will provide you a further explanation about ISO 27001 and ISO 27002:
- ISO 27001 vs. ISO 27002 https://advisera.com/27001academy/knowledgebase/iso-27001-vs-iso-27002/
This material can also provide additional information:
- ISO 27001 Annex A Controls in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/
Comment as guest or Sign in
Jun 24, 2021