controls/frameworks/iso-27001.json
|
{"frameworkId":"iso-27001","label":"ISO/IEC 27001 + 27002:2022","version":"2022","description":"Findings evaluated against ISO/IEC 27002:2022 implementation guidance and mapped to ISO/IEC 27001:2022 Annex A control IDs. Pass/Fail reflects whether the technical control is implemented per 27002 guidance \u2014 not whether the ISO 27001 certification requirement itself is met, as 27001 is risk-based and does not prescribe specific technical configurations.","homepageUrl":"https://www.iso.org/standard/27001","css":"fw-iso","totalControls":93,"registryKey":"iso-27001","csvColumn":"Iso27001","displayOrder":4,"scoring":{"method":"control-coverage","themes":{"5":{"label":"Organizational Controls","controlCount":37},"6":{"label":"People Controls","controlCount":8},"7":{"label":"Physical Controls","controlCount":14},"8":{"label":"Technological Controls","controlCount":34}}},"colors":{"light":{"background":"#ecfdf5","color":"#065f46"},"dark":{"background":"#064E3B","color":"#6EE7B7"}}} |