Seamless ISO 27001:2022 Migration - A Success Story with 360inControl® - 360inControl® - Internes Kontrollsystem für das Digitale Zeitalter

360inControl® - Blog | Heike Klaus/17. January 2024/Governance Risk & Compliance, ISO27002, Information Security Management System (ISMS)

Seamless ISO 27001:2022 Migration - A Success Story with 360inControl® And be ready for the future!

Embarking on the journey to migrate your Information Security Management System (ISMS) to the latest ISO 27001 version can be a daunting challenge for many certified companies. The real question is, how do you make this transition efficiently and effectively?

At CISS, we faced and conquered this challenge alongside our valued long-term partner, UNIC AG. Aiming for a big bang migration as part of their annual internal audit, UNIC AG, a user of our 360inControl solution for ISO 9001 and ISO 27001 certifications, sought a seamless transition to the new standard version.

This is how we did it!

Set-up the strategy
Our first strategic move was crafting a comprehensive Statement of Applicability (SOA) tailored to the new ISO 27001 standard, encompassing a scope of 93 controls. We then meticulously mapped all existing controls to their counterparts in the new version and migrated open findings and measures.
Control Assignment

For the internal audit cycle, we focused on 30 controls within the scope, conducting a thorough examination and reassigning existing open measures. The remaining controls were addressed by considering the previous year’s results, ensuring a comprehensive assessment aligned with the new standard.
The Outcome

UNIC AG received an assessment report adhering to the latest standard, empowering them for future evaluations without the burden of migration concerns.
Conclusion

In conclusion, the additional efforts invested in creating the new SOA and the control mapping took only a few days, seamlessly completed within a week. The interview process, though slightly prolonged due to the consideration of both old and new versions, was streamlined.

Frank Hohl, the individual responsible at UNIC, when asked if he would choose the same approach again, responded, “Absolutely. Adopting 360inControl’s approach minimized additional work during the audit phase. Thanks to Andreas von Grebmer & 360inControl® and their pragmatic methodology, we are already prepared for the new standard. I highly recommend this approach to anyone facing a similar challenge.” Experience a hassle-free ISO 27001:2022 migration with 360inControl – where efficiency meets excellence.

Frank HohlUNIC

We are more than happy to support you!

With 360inControl® we can support you in your ISMS migration – or any kind of certification readiness!

Interested in more information?

Book a Demo