: 11 new controls were added to address modern threats, including Threat Intelligence Information Security for Cloud Services hightable.io Free Previews and Summaries
| Feature | (Old) | ISO 27002:2022 (Current) | | :--- | :--- | :--- | | Structure | 14 Control Domains | 4 Key Themes | | Number of Controls | 114 Controls | 93 Controls | | Naming | Named by Domain (e.g., A.9 Access Control) | Named by Theme (e.g., 5. Organizational) | | Status | Withdrawn/Obsolete | Active Standard | iso iec 27002 pdf download full
The "Guidance" section of each control is a goldmine. For example, under Control 5.1 (Policies for information security), the PDF provides a template structure for ownership, review cycles, and exception handling. Copy this language into your internal policy documents. : 11 new controls were added to address