top of page

This document provides a reference set of generic information security controls including implementation guidance. This document is designed to be used by organisations:

a) within the context of an information security management system (ISMS) based on ISO/IEC 27001;

b) for implementing information security controls based on internationally recognized best practices;

c) for developing organisation-specific information security management guidelines.

ISO 27002:2022 Standard

    bottom of page