INTERNATIONAL ISO/IEC STANDARD 27001 Third edition 2022-10 Information security, cybersecurity and privacy protection Information security management systems - Requirements Sécurite de I'information, cybersécurité et protection de la vie privee -Systemes de management de la sécurité de I'information Exigences Referencenumber IS0/IEC27001:2022(E) ISO @IS0/IEC2022 IS0/IEC27001:2022(E) COPYRIGHTPROTECTEDDOCUMENT IS0/IEC2022 All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may be reproduced or utilized otherwise in anyform or byanymeans, electronic or mechanical, including photocopying,or posting on the internet or an intranet, without prior written permission. Permission can be requested from either IsO at the address below orIso'smemberbody in thecountry ofthe requester. ISO copyright office CP 401 : Ch.de Blandonnet 8 CH-1214Vernier,Geneva Phone:+41227490111 Email: [email protected] Website: www.iso.org Published in Switzerland ii @IS0/IEC2022-All rightsreserved