ISO 27002: What are the new changes in 2022?

Last February, the new version of ISO 27002:2022 was published.   ISO 27002 is a guide of the ISO 27000 family of standards, which provides best practices in information security, which now with the new update are called security controls. What are the main changes in ISO 27002? Broadly speaking:  Orientation to the concepts of […]

What is ISO 27701 and to whom it applies?


ISO 27701 is an extension of ISO 27001, for privacy management. It is also known as Privacy Information Management System (PIMS).  Its purpose is to provide guidance on how organizations should manage personal information, as well as to help demonstrate compliance with privacy regulations, especially the General Data Protection Regulation. Who does it apply to? […]