SOA Table ISO 27018 specific controls for processing Personally Identifiable Information (PII)
Assign topic to the user
From your question, I’m assuming by renumbered clauses you mean the clauses related to the reviewed controls in ISO 27002 standard, released in February 2022.
Considering that, please note that the ISO 27001, 27017 & 27018 toolkit is based on ISO 27001 standard, and a new version of this standard is expected to be released only in May 2022.
ISO 27002 is only a supporting standard to implement ISO 27001, and it is not mandatory to implement ISO 27001.
The new toolkit, with the templates updated according to the new standard, will be released as soon as the new standard is published, and customers that bought the toolkit in the last 12 months before the standard’s release date will receive the updated documents free of charge.
After publication, organizations will have a transition time (defined by the time of the release of the new standard) to change their controls and documentation to the new standard, so you will have plenty of time to make your changes. The transition period is probably going to be 24 months.
To see how the new controls numbering of ISO 27002:2022 are related to the controls numbering from ISO 27002:2019, please see this free to download the whitepaper:
- Overview of new security controls in ISO 27002:2022 https://info.advisera.com/27001academy/free-download/overview-of-new-security-controls-in-iso-27002/
Comment as guest or Sign in
Apr 19, 2022