New ISO/IEC 27001 revision 2022
Cloud security, business continuity management and thread monitoring as focus points of the revised ISO/IEC 27001
The ISO/IEC 27001 standard for information security management has been revised after five years. It provides protection against threats from the Internet.
This is achieved by introduction of suitable measures (“controls”) for the organization following a risk analysis.
A total of almost 100 such measures are planned, which must be continuously maintained in the sense of ongoing quality management (Kaizen, PDCA).
The introduction of ISO/IEC 27001, like cybersecurity in general, must be supported and borne by the management. The result is an information security management system that represents the best possible protection against cyber risks.
ISO/IEC 27001 provides for the possibility of auditing for an organization or an organizational unit.