ISO 27001 versions
Assign topic to the user
Whats the difference between the previous version and new version of ISO 27001.
Answer: This kind of question is not common on interviews (specially considering the previous version of ISO 27001:2013 is from 2005), but the main differences are related to:
- the structure
- Interested parties
- Documented information
- Risk assessment and treatment
- Objectives, monitoring and measurement
- Corrective & preventive actions
- Communication
- the number of controls on Annex A.
These articles will provide you further explanation about ISO 27001 2013 and 2005 versions:
- A first look at the new ISO 27001 https://advisera.com/27001academy/blog/2013/01/28/a-first-look-at-the-new-iso-27001-2013-draft-version/
- Infographic: New ISO 27001 2013 revision – What has changed? https://advisera.com/27001academy/knowledgebase/infographic-new-iso-27001-2013-revision-what-has-changed/
Comment as guest or Sign in
May 18, 2018