ISO/IEC 27005:2022
Current
The latest, up-to-date edition.
Information security, cybersecurity and privacy protection — Guidance on managing information security risks
Hardcopy , PDF
English, French
25-10-2022
This document provides guidance to assist organizations to:
— fulfil the requirements of ISO/IEC 27001 concerning actions to address information security risks;
— perform information security risk management activities, specifically information security risk assessment and treatment.
This document is applicable to all organizations, regardless of type, size or sector.
| Committee |
ISO/IEC JTC 1/SC 27
|
| DocumentType |
Standard
|
| Pages |
62
|
| PublisherName |
International Organization for Standardization
|
| Status |
Current
|
| Supersedes |
| Standards | Relationship |
| NF ISO/IEC 27005:2023 | Identical |
| DS/ISO/IEC 27005:2022 | Identical |
| CEI UNI EN ISO/IEC 27005:2025-04 | Identical |
| I.S. EN ISO/IEC 27005:2024 | Identical |
| DS/EN ISO/IEC 27005:2024 | Identical |
| PN-EN ISO/IEC 27005:2025-01 | Identical |
| AS/NZS ISO/IEC 27005:2024 | Identical |
| BS EN ISO/IEC 27005:2024 | Identical |
| NS-ISO/IEC 27005:2022 | Identical |
| UNE-EN ISO/IEC 27005:2024 | Identical |
| INCITS/ISO/IEC TR 19791:2010(R2025) | Information technology - Security techniques - Security assessment of operational systems, a Technical Report prepared by INCITS and registered with ANSI |
| CEI UNI EN ISO/IEC 27002:2023 | Information security, cybersecurity and privacy protection - Information security controls |
| CEI UNI EN ISO/IEC 27001:2024 | Information security, cybersecurity and privacy protection - Information security management systems - Requirements |
Access your standards online with a subscription
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.
Important note : Users cannot be edited or removed once added to your Multi user PDF.