Get Help Now
CONTACT US

SHARE

RESOURCES  >   BLOG

ISO 27002 Update: ISO 27002:2013 to ISO 27002:2022 Control Mapping

Posted March 2, 2022

The most widely adopted framework for information security is updated (almost). The last update was 8 years ago in 2013, and the new draft of ISO 27002:2022 was published on February 15, 2022.

The goal of this post is to share the updates as well as provide you an excerpt of the control mapping in Annex B of ISO 27002:2022 that may assist you in your planning for implementing the revised standard.

The Main Changes:

The standard no longer has domains A.5, etc. but relies upon 4 themes. All controls fall under:
  • Organizational controls (if they do not fall under any other domain)
  • Technological controls (if they concern technology)
  • People controls (if they concern individual people)
  • Physical controls (if they concern physical objects)
ISO 27002:2022 contains 93 controls in 4 domains vs. 114 controls in 14 domains in IS0 27002:2013:
  • Organizational – 37 controls
  • People – 8 controls
  • Physical – 14 controls
  • Technological – 34 controls
11 new controls have been introduced in the latest version of ISO/IEC 27002:2022 to better represent today’s security challenges.
  • 5.7 Threat intelligence
  • 5.23 Information security for use of cloud services
  • 5.30 ICT readiness for business continuity
  • 7.4 Physical security monitoring
  • 8.9 Configuration management
  • 8.10 Information deletion
  • 8.11 Data masking
  • 8.12 Data leakage prevention
  • 8.16 Monitoring activities
  • 8.23 Web filtering
  • 8.28 Secure coding

Ultimately, at this time it is expected this new version will be appended to the ISO27001:2013 standard to make a revised version and, at that point, it will become the “Annex A.”

ISO 27002:2013 to ISO 27002:2022 control mapping

If you’re thinking of implementing the revised standard, download our Data Sheet.


RELATED RESOURCES

Let’s Discuss Your Cybersecurity Needs

Privacy Settings
We use cookies to enhance your experience while using our website. If you are using our Services via a browser you can restrict, block or remove cookies through your web browser settings. We also use content and scripts from third parties that may use tracking technologies. You can selectively provide your consent below to allow such third party embeds. For complete information about the cookies we use, data we collect and how we process them, please check our Privacy Policy
Youtube
Consent to display content from - Youtube
Vimeo
Consent to display content from - Vimeo
Google Maps
Consent to display content from - Google
Spotify
Consent to display content from - Spotify
Sound Cloud
Consent to display content from - Sound
Contact Us