In 2022, new versions were released of ISO 27001 and its sister standard, ISO 27002 (which provides guidelines on selecting, implementing and managing information security controls). Both ISO 27002:2022 and ISO 27001:2022 saw significant changes from the 2013 version of the Standards. Annex A of ISO 27001 has been completely restructured and now incorporates all of the 27002 controls. Some of the management system clauses have also been changed, making some requirements more explicit and aligning the standard more closely with other annex SL standards, such as ISO 9001 and ISO 22301.
URM’s 2-day online course will teach you about the key changes to the Annex A controls and management system clauses, and how to transition from ISO 27001:2013 to ISO 27001:2022. On day 1 we will explore the changes to ISO 27002, including the 4 new themes, the new, merged and updated controls, as well as the new ‘attributes’ feature. On day 2, we will look at the changes to the management system clauses but will mainly focus on how to update your risk assessment and Statement of Applicability, and how to transition to the new control set, discussing the different approaches you can take to doing this. You will also learn how to use, link and present the new attributes.
Course Features
- Lectures 0
- Quizzes 0
- Duration 1 day
- Skill level All levels
- Language English
- Students 4
- Assessments Yes
