What is the current version of ISO 27001?

The current version of ISO 27001 is ISO 27001:2022, an internationally recognized Information Security Management System (ISMS) standard.

Here are some of the factors included in the latest version of ISO 27001 : 

• Scope: ISO 27001:2022 specifies the requirements for setting up, enforcing, maintaining, and continually improving an ISMS in your organization.

• Leadership: Top control must display management and commitment to the ISMS by taking information security measures, assigning roles and responsibilities, and supervising the matter.

• Planning: The enterprise needs to set up a risk assessment system to identify, examine, and evaluate information security risks. Based on this assessment, suitable controls must be implemented to control these risks.

• Support: Your organization must provide the resources, expertise, recognition, communication channels, and documented data necessary for the establishment, implementation, preservation, and development of the ISMS.

• Operation: Your business enterprise has to enforce processes and controls to address identified risks and achieve information security objectives. This includes dealing with controls, adjustments, and incidents.

• Performance Evaluation: Your company has to display, measure, analyze, and evaluate the performance of the ISMS. Internal audits must be performed at intervals to assure proper compliance. 

• Improvement: Your organization has to take corrective actions to deal with areas of noncompliance and enhance the effectiveness of the ISMS. Lessons found from incidents and modifications need to be used to improve information security.