Example Knowledge Base

Does ISO 27001 require Access Control?

Yes — 1 provision

Information Security Controls (Annex A)

Implements: Access Control active Effective: Oct 25, 2022
"ISO 27001:2022 restructured Annex A controls into **4 themes** (organizational, people, physical, technological) with **93 controls** replacing the previous 114."

Requirements

RequirementDetails
Access control policyDefine and enforce access control rules
User access managementFormal registration and de-registration
Sources: ISO 27001:2022
View Framework View Requirement Coverage matrix