Guest user Created: Jun 24, 2021 Last commented: Jun 24, 2021

Is there a difference between ISO 27002 and Annex A?

Please confirm if there is a difference between ISO 27002 and Annex A? I’m busy preparing to write the IS competence unit I failed and want to make sure that I have the right material?

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Jun 24, 2021

The difference between ISO 27001 Annex A and ISO 27002 is that while ISO 27001 Annex A defines control objectives, ISO 27002 provides orientation and guidance on how to implement the controls listed in ISO 27001 Annex A (the controls objectives are exactly the same in both standards).

This article will provide you a further explanation about ISO 27001 and ISO 27002:
- ISO 27001 vs. ISO 27002 https://advisera.com/27001academy/knowledgebase/iso-27001-vs-iso-27002/

This material can also provide additional information:
- ISO 27001 Annex A Controls in Plain English https://advisera.com/books/iso-27001-annex-controls-plain-english/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jun 24, 2021

Expert Advice Community