A significant information security standard has been revised

In a world where data security is a priority for every organization, keeping systems and processes up to date with the evolving security landscape is essential.

The new version of ISO/IEC 27002:2013 Information Technology - Security Techniques - Code of Practice for Information Security Controls is expected to be published (February 2022) as ISO/IEC 27002:2022 Information Security, Cybersecurity and Privacy Protection - Information Security Controls.

All organizations with an ISMS or Information Security good practices will have to map and update their controls in place against the new guidance on the updated ISO/IEC 27002, according to the organisational needs and context.

There are fewer controls in this new edition, 11 new ones have been added, some have been consolidated, and some have been eliminated.  Furthermore, the controls are organized into four groups based on their importance.

Read more about the revision here

View our FAQ document here

Training is necessary to effectively manage this change

  • By using this new version of ISO/IEC 27002, you can implement controls that are more robust, relevant to your organization, and appropriate to the environment in which it operates
  • The revision will help you prevent risk, build organizational resilience, and gain an advantage over your competitors
  • BSI will help you become familiar with the new version and acquire the necessary knowledge to make the necessary changes to your security controls
  • Understand the rationale behind the processes and usages related to the controls
  • By providing clear and practical guidance, you will be able to effectively implement the controls

Upcoming ISO/IEC 27002 Training Courses:

Course Name

 

Format/Delivery Method

Duration

 

Course Launch Date

ISO/IEC 27002:2022 Implementing the changes

 

On-Demand

4 hours

 

End of March 2022

ISO/IEC 27002:2022 Implementing the changes

 

Instructor Led Training or Virtual Instructor Led Training

1 day

 

End of March 2022

ISO/IEC 27002:2022 Implementation

 

On-Demand

1 day

 

End of March 2022

ISO/IEC 27002:2022 Implementation

 

Instructor Led Training or Virtual Instructor Led Training

2 days

 

End of March 2022

ISO/IEC 27701:2019 Lead Auditor

 

Instructor Led Training or Virtual Instructor Led Training

3 days

 

End of March 2022

Related Training Courses Currently Available

BSI Exclusive Offer

As ISO 27002 has been revised, ISO 27001 will have to be updated to reflect those changes in Annex A. These changes and reasons for including them (or excluding them) will need to be evaluated alongside any other ISO 27001 requirements changes. In order to be proactive in the way you manage information security, you must be familiar with the changes and implement them where necessary.

We are offering a free instructional webinar on ISO 27001 changes to anyone who attends either ISO 27002 Implementing the changes or our full ISO 27002 Implementer course before October 2022. The webinar will help ensure you understand the changes to Annex A as well as all other changes to ISO27001 and ensure you can effectively implement them.

Why choose BSI as your Training partner?

  • BSI’s tutors are experts and use their real-life experience to bring the subject matter to life
  • Proven fast track learning, knowledge retention and competence applied on the job
  • BSI is the global leader in delivering management systems assessment and certification, helped shape the top ISO standards (ISO 9001; ISO 27001; ISO 45001; ISO 14001; and more) - who better to learn from?
  • BSI’s training delegates walkaway with the most robust reference materials developed with access to global subject matter experts
  • Multiple channels to optimize your training needs for your learners and teams

Learn more with our resources:

Watch On-Demand Webinar

Download the FAQ’s document

Read about the changes (UK’s Blog) 

Related Training Course