Management Standards Update: ISO 27001:2022 Information Security

An Office for National Statistics report which was released in September 2022 highlighted the nature of fraud and computer misuse in England and Wales to the end of March 2002.

Using various sources of data for fraud and computer misuse, the full report highlighted the likely victims, circumstances and long-term trends, and summarised some startling key statistics:

  • Fraud and computer misuse offences have increased substantially over the last two years.
  • Fraud offences increased by 25% (to 4.5 million offences) compared with the year ending March 2020.
  • The proportion of fraud incidents that were cyber-related increased to 61% from 53%.
  • Computer misuse increased by 89% to 1.6 million offences.

Subsequently, British Standards Institution released a statement that the ISO 27001 information security management standard had been updated and any organisation that currently holds this registration must have transitioned by October 2025.

ISO 27001 helps organisations identify risks to their information and assets and enables them to ensure appropriate security controls are in place. It also gives confidence to customers that any information held is protected and will not be subject to a security breach or cyber fraud.

The 2022 major update is intended to reflect these increased risks and that businesses also have a much greater reliance on technology for processes and operations, particularly in light of the increase in hybrid working, bringing own devices to work, and Industry 4.0.

For anyone looking to implement this standard or transitioning from the previous version, there are key changes that require some planning. In summary, 35 controls remained unchanged, 23 controls were renamed, 57 controls were merged to form 24 controls, and 11 new controls were added.

Undoubtedly, there is even greater value and benefit from having ISO 27001 certification and ensuring you retain the standard by implementing these changes.

If you are already First Quality Solutions (FQS) client we will already have been in touch with you to arrange your transition.

If you are not an existing FQS client and would like further advice, we have a 100% track record of helping clients achieve ISO 27001 accreditation, so if you would like to discuss how implementing management standards can help your organisation please get in touch.

Our First Quality Solutions division comprises a team of expert ‘ hands-on’ consultants who integrate totally into your business. With expertise across quality, environmental, sustainability, health and safety and information security, they support clients to gain a competitive edge by reducing costs, improving process efficiencies and promoting robust risk management.

Post by:

John Barke

Our Latest News

What are the Procurement Act 2023 and the Procurement Regulations 2024?

What are the Procurement Act 2023 and the Procurement Regulations 2024?

From 24th February 2025, The Procurement Act 2023 and the Procurement Regulations 2024 will replace the existing Regulations and will become effective from this date.

ESOS Phase 3 – Have You Completed Your Energy Action Plan?

ESOS Phase 3 – Have You Completed Your Energy Action Plan?

Following recent changes to the ESOS legislation, organisations which qualified and submitted compliance for Phase 3 are now also required to complete an additional stage by producing and ESOS Energy Action Plan and then report progress against it on an annual basis.

Explore all news

Our Accreditations & Partnerships

ISO 9001:2015
Investors in People Gold
Cyber Essentials
RISQS Verified
RISQS Audited
IOSH
BSI Associate Consultant Scheme
ISOQAR
East Midlands Chamber
Rail Forum
Marketing Derby Bondholder
Explore our credentials