ISO 27001:2022
I just wanted to confirm with you some information regarding the dates that organisations can start certifying to the new issue of ISO 27001:2022. The transition period diagram that you have published in your blog states that organisations can start certifying to the new standard as of the 25/10/2022.
Does that mean Certification Bodies are already certified to the new standard and the Auditors are already qualified to audit organisations against the new standard's clauses and controls?
Or is it in fact a mistake in the transition diagram and the date should read 25/10/2023?
Assign topic to the user
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more 
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
ISO 27001 DOCUMENTATION TOOLKIT
Step-by-step implementation for smaller companies.
Find out more
First of all, sorry for this confusion.
In the transition scheme, the 25/10/2022 date only means that ISO 27001:2022 is already a certifiable standard by the day of its release.
To be able to issue the certification, certification bodies, and certification auditors working for them, will need to go through an update process to be qualified for that. Some certification bodies will be able to do this more quickly, others will be slower - in any case, we expect that some certification bodies will start certifying against the new 2022 revision very soon.
Comment as guest or Sign in
Oct 29, 2022