NEN-EN-ISO/IEC 27002 is an information security standard that provides suggestions and best practices for security controls on the implementation and maintenance of information security management systems (ISMS). The standard is a deepening of ISO 27001, a standard that specifies what an ISMS should look like. To keep standards relevant and current, they are reviewed periodically.
During this period, the committee from which the standard originates decides whether a revision is needed and, if so, what changes the standard should undergo. It was decided that NEN-EN-ISO/IEC 27002 should be revised.
It is expected that significant changes will be made in this revision, both in the structure of the document and in the content of the security controls. Currently, the revision is still a "working draft. This means that it will be voted on in the international meeting at ISO. Further revisions may take place as a result of this vote. The planned publication of the final document will take place in October 2021.
