ISO 27001:2022 Controls
ISO 27001:2022 includes a comprehensive set of controls to ensure effective information security management. Here is the list of controls:
- 5.1: Policies for information security
- 5.2: Information security roles and responsibilities
- 5.3: Segregation of duties
- 5.4: Management responsibilities
- 5.5: Contact with authorities
- 5.6: Contact with special interest groups
- 5.7: Threat intelligence
- 5.8: Information security in project management
- 5.9: Inventory of information and other associated assets
- 5.10: Acceptable use of information and other associated assets
- 5.11: Return of assets
- 5.12: Classification of information
- 5.13: Labelling of information
- 5.14: Information transfer
- 5.15: Access control
- 5.16: Identity management
- 5.17: Authentication information