ISO 27001 Update: What to Expect

15 Nov, 2022

ISO 27001:2022 has now been updated! Here’s what you need to know so far…

Why is ISO 27001 being updated?

This is standard practice with ISO. Every five to eight years, International Standards are reviewed by all ISO member bodies to identify whether they are still relevant.

The pandemic has caused a leap in the adoption of technology, with more of us working from home, shopping online and video conferencing than ever before. This has caused a rise in cybercrime. An analysis from Canalys reported more records being compromised in the first 12 months of the pandemic than the previous 15 years combined. 

When was ISO 27001 updated?

ISO 27001:2022 was published at the end of October and will now replace ISO 27001:2013. But don’t panic. You have three years to transition over to the new Standard, however we would recommend you starting the process as soon as possible. This is to ensure you have plenty of time to gain compliance, ensuring it’s stress-free for you.

What has changed?

ISO 27001 has seen a significant change and has been revised to fall in line with other standards. This update includes changes to the Statement of Applicability and Risk Register. The Annex A controls has been regrouped to four broad themes and the overall number of controls has been reduced from 114 to 93. Several of the previous controls has been integrated and new ones added.

What do I need to do?

To understand the changes and how to gain compliance with ISO 27001:2022, we recommend attending one of our ISO 27001 Upgrade Seminars. You can book your place here.

If you’re already a Certification client of ISO QSL, we will be in touch to start your transition to ISO 27001:2022. However, if you have any questions in the meantime, please contact your account manager on 0330 058 5551.

If you’re not currently a Certification client of ISO QSL or have ISO 27001 Accredited certification with a body such as UKAS or INAB, we can still support you through the process with ISO Consultancy

Our Assessors have a wealth of experience in supporting clients through updates such as these. We believe in a collaborative and supportive approach, simplifying the process to ensure it remains straightforward and stress-free for you.

You can find out more about our ISO Consultancy services here: or request a quote here:

What if I want to implement ISO 27001?

Then this is a great time to start the process. You can request a quote for ISO 27001 certification here: or alternatively, you can call our friendly team of advisors on 0330 058 5551.

ISO Quality Services Ltd are proud to specialise in the implementation and certification of the Internationally recognised ISO and BS EN Management Standards.

Do you want to get ahead of your competition? Win more tenders or save time and money on reoccurring issues? Contact us today on 0330 058 5551 or email

Alternatively, you can request a quote by filling out our enquiry form and a member of our team will be in touch shortly.

Related Posts

Why Technology Could be Your Greatest Strength and Biggest Risk

17 Oct, 2023

In this guest article with Duncan Sutcliffe from Sutcliffe & Co Insurance Brokers, we look at why brokers are talking about cyber and data insurance, and the growth in demand for cyber security and information security standards like ISO 27001.

ISO QSL Bingo Box Challenge Is Back!

2 Oct, 2023

We are thrilled to announce the return of our Bingo Box challenge for the 6th time! Foodbanks, the lifelines for countless families, are grappling with unprecedented demand, leaving their shelves empty and their resources stretched thin.

Reduce, Reuse, Recycle

ISO 14001 Is Just About Recycling… Isn’t It?

19 Sep, 2023

The days of checking bins have gone! Find out how ISO 14001 has changed with the times.

Puzzle piece being put in place in to the center of a circle.

10 Benefits of Implementing Multiple ISO Standards

30 Aug, 2023

In the dynamic landscape of modern business, organisations are constantly seeking ways to enhance operational efficiency, quality, and management practices. A powerful strategy that has gained traction is the implementation of multiple ISO standards.