ISO/IEC 27005:2022

Information security, cybersecurity and privacy protection — Guidance on managing information security risks

OVERVIEW

This document provides guidance to assist organizations to:

—    fulfil the requirements of ISO/IEC 27001 concerning actions to address information security risks;

—    perform information security risk management activities, specifically information security risk assessment and treatment.

This document is applicable to all organizations, regardless of type, size or sector.

COMMENTS

-

PRODUCT DETAILS

Status Current
Edition 2022
No. of Pages 62
ICS Classification 35.030 IT Security
Committee ISO/IEC JTC 1/SC 27
Available for Purchase For sale in Singapore only
Adoption ISO

Managed by TOPPAN NEXT Pte. Ltd.

Enterprise Singapore's appointed distributor of

EnterpriseSG Standards Publications and Overseas Standards.

© 2026 TOPPAN NEXT

All Rights Reserved