Iso Iec 27002 Pdf Download Full May 2026

If you are searching for a PDF, you will likely encounter two different versions. It is crucial you understand the difference, as the structure changed radically in 2022.

| Feature | ISO 27002:2013 (Old) | ISO 27002:2022 (Current) | | :--- | :--- | :--- | | Structure | 14 Control Domains | 4 Key Themes | | Number of Controls | 114 Controls | 93 Controls | | Naming | Named by Domain (e.g., A.9 Access Control) | Named by Theme (e.g., 5. Organizational) | | Status | Withdrawn/Obsolete | Active Standard | iso iec 27002 pdf download full

The Consolidation (2022 Update): The 2022 version merged many redundant controls. For example, roughly 20 different policy-related controls were merged into a single "Policy on information security" control. Do not rely on the 2013 version for current compliance projects. If you are searching for a PDF, you

This is the largest group, focusing on governance and management. Key controls include: This is the largest group, focusing on governance

While 27002 is not certifiable alone, it is the backbone for 27001 certification. Use the PDF to build your Statement of Applicability (SoA), which lists all controls you have selected and justifies exclusions.

Having the PDF is just the first step. Here is a practical 5-step action plan: