Skip to content

Information security ISO/IEC 27001

Information Security: How to Use the New ISO/IEC 27001:2022 to Maintain Certification

Information security is a key priority for many companies around the world, including Sygest, which is certified to ISO/IEC 27001. This certification attests to the company’s commitment to the management and protection of sensitive data and company information. A new version of the standard, ISO/IEC 27001, was released in 2022, introducing important updates to keep data and information security in step with the evolving digital landscape.

In this article, we will explore the main changes introduced by ISO/IEC 27001:2022 and how Sygest and other ISO 27001-certified companies can use these updates to improve and achieve information security certification.

ISO/IEC 27001:2022 What’s new in information security?

ISO/IEC 27001 is a global standard for information security management. Its latest version, ISO/IEC 27001:2022, has a number of important changes and improvements over the previous version. Here are some of the main new features:

  • Risk-Based Approach: The new standard emphasises even more the importance of a risk-based approach to data and information security management. Organisations, including Sygest, must conduct a more detailed risk assessment and integrate it into their security strategy.
  • New Leadership Requirements: Corporate leadership plays a key role in promoting information security. The standard now requires senior management to demonstrate more active involvement and effective leadership in managing this sensitive data.
  • Technology Updates: ISO/IEC 27001:2022 takes into account new technologies and emerging digital challenges, providing clearer guidelines for the use of technologies such as cloud computing, Internet of Things (IoT) and artificial intelligence in data and information security.
  •  Focus on Suppliers and Supply Chains: With the increase in threats related to suppliers and supply chains, the new standard calls for stricter scrutiny of third parties and assessment of supply chain security.

ISO/IEC 27001:2022 represents a significant step forward in information security management. For Sygest and other ISO 27001 certified companies, this new standard offers an opportunity to further improve their data and information security and to stay ahead of the ever-increasing challenges in the digital world. Importantly, Sygest is ISO 27001 certified with also 2017 and 2018 extensions for cloud management.

 Sygest is using this opportunity to consolidate its position as a leader in information security and better protect its customers’ sensitive data.

Info and contacts

To receive further information and insights on the topic, please send an e-mail to e.corradini@sygest.it