Welcome to our News page dedicated to ISO 27*** standards, including ISO 27001:2022, ISO 27001:2013, and ISO 27002:2022. Stay informed about the latest updates, revisions, and industry trends related to information security management systems (ISMS). Our expert team continuously monitors the evolving landscape of ISO 27*** standards to bring you relevant news articles, insightful analysis, and practical guidance on implementing and maintaining robust information security practices. Whether you’re an IT professional, a security practitioner, or an organization striving for data protection and compliance, this page is your trusted source for staying up to date with the latest developments in ISO 27*** standards.
Blog Topic: A Comprehensive Overview of ISO 27*** Standards for Information Security
In an era of increasing cyber threats and data breaches, safeguarding sensitive information is of paramount importance. Our comprehensive blog post provides an in-depth overview of the ISO 27*** series of standards, including ISO 27001:2022, ISO 27001:2013, and ISO 27002:2022. We explore the core principles, requirements, and best practices outlined in these standards, offering valuable insights into building and maintaining robust information security management systems (ISMS). Whether you’re seeking certification or aiming to enhance your existing security practices, this guide equips you with a comprehensive understanding of ISO 27*** standards and helps you establish a strong foundation for information security in your organization. Stay ahead of the curve and ensure the protection of your valuable data with our expert guidance.
ISO/IEC 27701 is the international standard that defines requirements for a Privacy Information Management System (PIMS). The original 2019 version was published as an extension to ISO/IEC 27001 (Information Security Management System, ISMS) and ISO/IEC 27002, adding controls and concepts related to personal data (PII) and privacy. In 2025, ISO released a revised edition. This…
27005 – 2022 Information security, cybersecurity and privacy protection — Guidance on managing information security risks ISO/IEC 27005:2022 provides guidelines for information security risk management. Knowledge of the concepts, models, processes, and terminologies described in ISO 27001 and ISO 27002 is important for a complete understanding of this standard. This document supports the main concepts…
Today I would like to briefly review the standard ISO/IEC 27018:2019 Information technology Security techniques. This document establishes generally accepted control objectives, controls and guidelines for implementing measures to protect personally identifiable information (PII) in accordance with the ISO/IEC 29100 privacy principles for public cloud computing environments. Specifically, this document specifies guidelines based on ISO/IEC…
ISO/IEC 27701 establishes requirements and provides guidance for establishing, implementing, maintenance and continuous improvement of a Privacy Information Management System (PIMS) for privacy management as part of the extension to ISO/IEC 27001 and ISO/IEC 27002. On the other hand, it defines the requirements related to PIMS and directs the PII controllers who have the responsibility…
On August 9, TRANSITION REQUIREMENTS FOR ISO/IEC 27001:2022 was published. The document contains a brief description of the changes and their impact. The following is a list of items that have changed. The number of controls decreased from 114 to 93. Their distribution by sections has also changed. Added 11 new controls and 58 added.…
ISO 27001:2013 updated for ISO 27002 – ISO 27002:2022 controls. The number of controls was changed, some of controls were added or changed. In addition, attributes group similar security controls.
