ISO/IEC 27001 and 27002:2013 versions published


The new, thoroughly updated and largely rewritten 2013 versions of ISO/IEC 27001 and 27002 are out!  

It may take a while for them to filter through to the national standards bodies for translation and branding, but if you are desperate to get your hands on them meanwhile, they are on sale directly from the ISO web store.

ISO/IEC 27001:2013 costs 108 Swiss francs. ISO/IEC 27002:2013 costs 184 Swiss francs.


I will be updating the standards' pages on ISO27001security.com shortly, and in due course we will revise our ISO27k-based information security policies too.  It will take a while though, due to the extent of the changes, including a load more topic-based policies to add to the set.