# ISO/IEC 27002:2022: Information security, cybersecurity and privacy protection - Information security controls

# Acronyms, Abbreviations, and Initialisms

Short Form Full Form
IEC International Electrotechnical Commission
ISMS Information Security Management System
ISO International Organization for Standardization

# Overview

ISO/IEC 27002:2022 is designed to be used as a reference for determining and implementing controls for information security risk treatment in an information security management system (ISMS) based on ISO/IEC 27001. It can also be used as a guidance document for organizations determining and implementing commonly accepted information security controls.

# Noteworthy

  • ISO/IEC 27002:2022 is used to implement the ISMS based on ISO/IEC 27001.

# Sources