{"id":8649,"date":"2024-08-08T14:06:29","date_gmt":"2024-08-08T12:06:29","guid":{"rendered":"https:\/\/nexpert.ch\/?p=8649"},"modified":"2025-12-18T09:58:01","modified_gmt":"2025-12-18T08:58:01","slug":"upgrade-to-iso270012022","status":"publish","type":"post","link":"https:\/\/nexpert.ch\/en\/upgrade-to-iso270012022\/","title":{"rendered":"Upgrade from ISO 27001:2013 to version 2022"},"content":{"rendered":"<div style=\"height:10px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<p>We are pleased to announce that Nexpert has successfully migrated from ISO\/IEC27001:2013 to the revised standard ISO\/IEC27001:2022. The revision of the standard has integrated necessary adjustments regarding various topics. The main ones are:<\/p>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Threat Intelligence &amp; Vulnerability Management<\/strong><br>The updated standard places a stronger focus on proactively dealing with threats and vulnerabilities. On the one hand, information about current and potential threats should be systematically collected and analyzed. On the other hand, this includes the identification, assessment and elimination of vulnerabilities in IT systems. The aim is to close security gaps before they can be exploited by attackers.<\/li>\n<\/ul>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Dealing with cloud services<\/strong><br>The standard now requires certified companies to handle cloud services in a specified manner. The acquisition, use and exit from cloud services must be defined and appropriate risk management integrated.<\/li>\n<\/ul>\n\n\n\n<div style=\"height:20px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>Configuration management<\/strong><br>Configurations of hardware and software, services and networks should be comprehensively defined, documented and monitored.<\/li>\n<\/ul>\n\n\n\n<div style=\"height:60px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Privacy<\/h3>\n\n\n\n<p>The topic of data protection has been increasingly woven into the standard. For example, newly documented processes are now required that cover the essential requirements of data protection (e.g. deletion of information, prevention of data leaks). This is a very sensible step, as the topics of information security and data protection overlap.<\/p>\n\n\n\n<div style=\"height:60px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">What use is that to you as a customer?<\/h3>\n\n\n\n<p>The Nexpert team has a comprehensive understanding of information security and data protection. Our employees are trained to practice information security at the highest level. As a trusted advisor, we can therefore advise our clients and plan, implement and maintain suitable IT solutions that are appropriate to their risk exposure.<br><\/p>\n\n\n\n<p><\/p>","protected":false},"excerpt":{"rendered":"<p>Wir freuen uns, mitteilen zu k\u00f6nnen, dass die Firma Nexpert erfolgreich von ISO\/IEC27001:2013 auf den revidierten Standard ISO\/IEC27001:2022 umgestellt hat. Die Revision des Standards hat notwendige Anpassungen hinsichtlich verschiedener Themenbereiche integriert. Die wesentlichen sind: Datenschutz Die Thematik des Datenschutzes wurde vermehrt in den Standard verwoben. So werden nun neu dokumentierte Prozesse verlangt, welche die wesentlichen [&hellip;]<\/p>\n","protected":false},"author":6,"featured_media":9137,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[109],"tags":[],"class_list":["post-8649","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-sicherheit"],"_links":{"self":[{"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/posts\/8649","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/comments?post=8649"}],"version-history":[{"count":10,"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/posts\/8649\/revisions"}],"predecessor-version":[{"id":9136,"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/posts\/8649\/revisions\/9136"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/media\/9137"}],"wp:attachment":[{"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/media?parent=8649"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/categories?post=8649"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nexpert.ch\/en\/wp-json\/wp\/v2\/tags?post=8649"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}