Example Knowledge Base

ISO 27001

Scope: International active Effective: Oct 25, 2022 Official source

Requirements Covered

Access Control Data Quality

Timeline

MilestoneDateNotes
PublishedOct 25, 2022ISO/IEC 27001:2022 released
Transition deadlineOct 31, 2025Organizations must transition from 2013 version

Provisions (2)

Information Security Controls (Annex A)

Implements: Access Control active Effective: Oct 25, 2022
"ISO 27001:2022 restructured Annex A controls into **4 themes** (organizational, people, physical, technological) with **93 controls** replacing the previous 114."

Requirements

RequirementDetails
Access control policyDefine and enforce access control rules
User access managementFormal registration and de-registration
Sources: ISO 27001:2022

Data Quality Requirements (Clause 7.5)

Implements: Data Quality active Effective: Oct 25, 2022
"Clause 7.5 requires organizations to ensure documented information is **available, suitable, and adequately protected** throughout its lifecycle."

Requirements

RequirementDetails
Documented informationMaintain quality and integrity of ISMS documentation
Information classificationClassify information according to sensitivity
Sources: ISO 27001:2022