Information Security Management Systems

ISO 27001 sets the requirements for the Information Security management System (ISMS). This international standard is applicable for all types of organizations: commercial, nonprofit, governmental and non-governmental.

The advantages of implementing an Information Security Management System

  • Determining the requirements and objectives of security
  • Increased reliability and security of systems and information
  • Improved customer and business partner confidence
  • Increased business resilience
  • Alignment with customer requirements
  • Improved management processes and integration with corporate risk strategies

Lean2Bee offers ISO 27001 and ISO 27002 extensions focusing on the Cloud Security (ISO 27017) and Protection of Personal Data in Cloud (ISO 27018)

Important Updates

ISO 27002: 2022 was released in February 2022, and its structure will be notably different than the current version (refer to Changes in ISO 27002 white paper).

On October 25, ISO 27001:2022 was released, replacing the version from 2013. You can get more information on the changes in the ISO 27001:2022 white paper here.
Companies can be certified against 2013 version until 31st October 2023.
Companies can be certified against new 2022 version from 25th October 2023. Compnies certified against the 2013 version must transition to 2022 version by 31st October 2025.