ISO/IEC 27001 is about to change the version, the conversion requirements are released

Today TIC Morning News

Recently, China's qualified assessment of the National Appraisal Committee (CNAS) issued a notice, please ask the information security management system certification agency to pay attention to the ISO/IEC 27001 revision dynamic and related conversion work arrangements, including the main changes, conversion working timetables and conversion working timetables of the new version of ISO/IEC 27001 Requirements for the process of recognition and certification conversion.

Please follow the information security management system certification agency to pay attention

At present, ISO/IEC 27001 "Information Security, Network Security, and Privacy Protection Information Safety Management System Requirements" is undergoing international standard final draft (FDIS) voting and is expected to be released in October this year. In order to do a good job in the conversion of the new version of ISO/IEC 27001, the International Appreciation Forum (IAF) recently released the compulsory file IAF MD26: 2022 "ISO/IEC 27001: 2022 Conversion Requirements". The main contents of this file include the main changes, conversion working timetables of the new version of ISO/IEC 27001, and the process requirements for the process of recognition and certification.

In response to this ISO/IEC 27001 replacement version, IAF requires that the recognition agency will complete the conversion of the recognized authentication institutions within 12 months after the standard release. The certification agency completes the certification organization within 36 months after the standard release of the standard release. Convert. In addition, IAF MD26 encourages recognition agencies and certification agencies to start conversion planning and preparation as soon as possible, and communicate conversion solutions with their respective customers in a timely manner. Related parties can download IAF MD26: 2022: https://iaf.nu/iaf_system/uploads/documents/iaf_md_26_trans_FOR_ISOIEC_27001-2022_09082022.pdf

In addition, IAF also mentioned in the notice of issuing IAF MD26: 2022: IAF will revise the IAF MD26 according to the release of the ISO/IEC 27001. At that time (See ISO/IEC Directives Part 1, 2022, Consolidated Iso Supplement, Annex SL). At the same time, the IAF Technology Commission also believes that the change of this part of ISO/IEC 27001 may cause adjustment of the current conversion solution (MD26), but it is unlikely that there will be major changes. In order to allow IAF members to start the planning as soon as possible, I decided to release IAF MD26 according to the voting results of IAF members. China's qualified assessment of the State Council (CNAS) has started to carry out recognition conversion preparations in accordance with the relevant requirements of IAF MD26, and will timely release CNAS's corresponding recognition conversion arrangements after the ISO/IEC 27001 release. Relevant certification agencies can start planning this conversion based on the relevant requirements of IAF MD26.

｜ Information Source China Qualified Evaluation State Council ｜

Disclaimer: The videos, pictures, and text parts used in this article are derived from the Internet, and the copyright belongs to the original author. If it involves copyright issues, please contact us in time to verify or delete after verification.

Remember the astrolabe ☆

Click "watch" to give me a little yellow flower

- END -