Guest
Updating to ISO 27001:2022
We began implementing ISO 27001:2013 but we would like to transition to the 2022 version. We have not been certified yet. Would it be possible to make this change?
Assign topic to the user
Expert
Rhand Leal
Apr 06, 2023
It is possible to make the transition from an initial ISO 27001:2013 implementation project to the 2022 version of the standard to be certified against ISO 27001:2022.
For that you will need to:
- Review your mandatory documentation according to the mandatory clauses of the standard (this will require less effort because changes in the main section of the standard were minimal)
- Review your Risk Treatment results to adjust controls IDs to the new ID settings, and evaluate if new controls from the 2022 version are applicable to your organization
- Review your documents related to the treatment of risks
For further information, see:
- ISO 27001 2013 vs. 2022 revision – What has changed? https://advisera.com/27001academy/blog/2022/02/09/iso-27001-iso-27002/
- Detailed explanation of 11 new security controls in ISO 27001:2022 https://advisera.com/27001academy/knowledgebase-category/iso-27001-implementation/
This material can help you:
- ISO 27001 2022 Transition Toolkit https://advisera.com/27001academy/iso-27001-transition-toolkit
Comment as guest or Sign in
Apr 06, 2023
Apr 06, 2023
Apr 06, 2023