Securing physical areas and equipment.
In February 2022, a major update was released. While the 2013 version remains a common reference point for legacy systems, organizations are increasingly transitioning to the 2022 edition. ISO/IEC 27002:2013 ISO/IEC 27002:2022 114 controls 93 controls (due to merging) Organization 14 domains 4 themes: Organizational, People, Physical, Technological Key Addition Control Objectives "Attributes" (tags for risk, type, etc.) New Domains ISO/IEC 27002:2013
Reporting and learning from security events. Securing physical areas and equipment
While you cannot "certify" against 27002 alone, it is the primary guide for passing ISO 27001 certification audits . and after employment. Avoiding legal
Controls for before, during, and after employment.
Avoiding legal, statutory, or contractual breaches. 2. Implementation Framework