Organizational Controls
37 controlsPolicies, roles, responsibilities, segregation of duties, threat intelligence, and supplier management.
Not startedCross-Sector
ISO/IEC 27001:2022
International standard for information security management systems (ISMS). Provides a systematic approach to managing sensitive information through risk assessment and treatment.
4Categories
93Controls
—Readiness
Control Categories
People Controls
8 controlsScreening, employment terms, awareness, training, disciplinary processes, and remote working.
Not startedPhysical Controls
14 controlsSecurity perimeters, physical entry, office/facility security, and equipment protection.
Not startedTechnological Controls
34 controlsEndpoint devices, access rights, authentication, cryptography, secure development, and monitoring.
Not started