ISO 27001:2022 Annex A added 11 new controls: threat intelligence, information security for cloud services, ICT readiness for business continuity, physical security monitoring, configuration management, information deletion, data masking, data leakage prevention, monitoring activities, web filtering, and secure coding. Organizations transitioning from 2013 should prioritize a gap assessment against these 11 new controls.
Keep Exploring