ISO/IEC TS 27022:2021 provides a specialized Process Reference Model (PRM) for Information Security Management Systems (ISMS). Unlike ISO 27001, which focuses on high-level requirements, 27022 is designed to help you build a "good report" and effective operational framework by defining the specific processes, inputs, and results needed to run an ISMS. Key Components for a "Good Report"

Key features of the 2022 update:

, helping organizations move from a "project phase" (implementation) to a sustainable "operational phase". : It strictly adheres to the definitions in ISO/IEC 27000 and meets the criteria of ISO/IEC 33004 for process reference models. ISO - International Organization for Standardization Key Components Management Processes

If you need a PDF for certification, you actually want: