• Content Type

ISO/IEC TS 27022:2021
PD ISO/IEC TS 27022:2021

Information technology. Guidance on information security management system processes

Last updated: 18 Jul 2024

Development Stage

Pre-draft

Draft

Published

31 Mar 2021
published

Scope

This document defines a process reference model (PRM) for the domain of information security management, which is meeting the criteria defined in ISO/IEC 33004 for process reference models (see Annex A). It is intended to guide users of ISO/IEC 27001 to:

— incorporate the process approach as described by ISO/IEC 27000:2018, 4.3, within the ISMS;

— be aligned to all the work done within other standards of the ISO/IEC 27000 family from the perspective of the operation of ISMS processes

— support users in the operation of an ISMS ? this document is complementing the requirements-oriented perspective of ISO/IEC 27003 with an operational, process-oriented point of view. © ISO/IEC 2022 All rights reserved

External Links

More information
BSI webpage

Let the community know

Categorisation

Domain: Horizontal
Scope: AI-enabling - Cybersecurity, AI-enabling - Information management, AI-enabling - IT governance
Topic: Data protection, Risk management, Security and resilience
Type: Process, management and governance

Key Information

Organisation: ISO/IEC, BSI
Committee: ISO/IEC JTC 1/SC 27
Relevant UK committee: IST/33/1

Referenced standards: ISO/IEC 27000, ISO/IEC 27003:2017, ISO/IEC 27001:2013, ISO/IEC 33003:2015, ISO/IEC TR 24774:2010, ISO/IEC 27035-1:2016, ISO/IEC 27000:2018, ISO/IEC 33004:2015, ISO/IEC 38500:2015, ISO 9000:2015

Share on XShare on LinkedIn

Discussion Forum

You must be logged in to contribute to the discussion

Login
\\n\\t\\t\\t\\t-->