annex_aLevel 1

Annex A - Information Security Controls

Annex A of ISO/IEC 27001:2022 lists the information-security controls that an ISMS can implement to treat identified risks. The annex groups 93 controls into four themes-organizational, people, physical and technological measures-and provides objectives and implementation guidance for each control. It serves as the baseline catalogue from which organizations select and tailor controls to meet their security requirements.

GET/api/v1/systems/reg_iso_27001/nodes/annex_a

Manual TranscriptionProprietary (ISO copyright)Source

Hierarchy Explorer

Hierarchy ExplorerChevron to expand - click title to open

a5A.5 Organizational controls

a6A.6 People controls

a7A.7 Physical controls

a8A.8 Technological controls

Cross-system equivalences0

No cross-system equivalences mapped for this node.

Report a data issue