By Joaquim Pereira on February 5, 2014

ISO/IEC 27001 was released in 2005 and adopted worldwide as the International reference for Information Security Management. In 2013 was launched the new version of the standard in order to align the requirements of standard to the current requirements of organizations, business and emerging technologies.

Thus the organizations certified on ISO/IEC 27001:2005 can be audited and can re-certified on this version until October 1, 2015. After this date, all organizations will be audited and re-certified in the new version of the standard.

For organizations with new applications for accreditation after October 1, 2013, audits and certifications in ISO/IEC 27001:2005 are only accepted until October 1, 2014. After this date, only audits and certifications in ISO/IEC 27001:2013 version will be accepted.
References:
ISO/IEC JTC 1/SC 27 N13143, JTC 1/SC 27/SD3 – Mapping Old-New Editions of ISO/IEC 27001 and ISO/IEC 27002 de 25/10/2013 ANAB, Transition to ISO/IEC 27001:2013, issue 276, de 07/11/2013

Posted in: Security.
Last Modified: March 1, 2016