If the reference to 27022 is in a contract or RFP (Request for Proposal), suggest replacing it with:
In reality, ISO 27001 requires specific documented information: iso 27022 pdf
Identifying and mitigating threats.
The standard you are likely looking for is ISO/IEC TS 27022:2021 , which provides specialized guidance on Information Security Management System (ISMS) processes Unlike ISO 27001, which focuses on requirements , or ISO 27003, which focuses on implementation , ISO 27022 offers a Process Reference Model (PRM) If the reference to 27022 is in a
These define the objectives of the ISMS and align it with the organization’s overall governance. A key example is the Information Security Governance/Management Interface , which ensures security meets business needs. New standards are added frequently
Formally titled Information technology — Guidance on information security management system processes , this document is designed to bridge the gap between high-level requirements and day-to-day operations. It describes ISMS processes in terms of their , providing a generic architecture that can be tailored to any organization's specific environment. Key Components of the ISO 27022 Process Reference Model
The ISO 27000 family is dynamic. New standards are added frequently. For example: