EN 
NL 
DE 
In 2022, ISO published the updated ISO 27001:2022 version. Now another 2023 version is already appearing. We explain exactly how in this article. Earlier we wrote about all the changes in the 2022 version compared to the old 2013 version. And so now another update? Let's get straight to the point: no substantive changes have been made.
Why ISO 27001:2023?
ISO 27001:2022 was published according to global standards, making it a global version. To ensure that this updated ISO 27001 is in line with European standards, the 2022 version had to be assessed by CEN (European Committee for Standardisation. This is to ensure that the international standards do not conflict with the European standards.
On 23 July 2023, CEN approved the international 2022 version for Europe. ISO 27001:2023 is currently fully equivalent to ISO 27001:2022. However, a preface has been added to the 2023 version aimed at Europe.
These are the correct ISO 27001 versions
Let's take stock. This change affects which versions are current. The international version ISO/IEC 27001:2022 nl has been withdrawn. Below you can see everything in a row:
- European / Dutch version: NEN-EN-ISO/IEC 27001:2023 nl -> Final
- European / Dutch version: NEN-EN-ISO/IEC 27001:2023 en -> Final
- International version: ISO/IEC 27001:2022 en -> Withdrawn
- International version: ISO/IEC 27001:2022 and -> Final
What does ISO 27001:2023 mean for my existing certification?
We can be very clear about this: the appearance of ISO 27001:2023 will have little impact on existing certifications that have now been issued according to ISO 27001:2022. All you need to change is your ISMS manual and VVT. This is because these often refer to a standard version. So that needs to be changed briefly to the 2023 version.
Which version is best to choose?
Since ISO 27001:2022 and ISO 27001:2023 are the same, you can choose which variant you want to certify your organisation under. Will you opt for the European variant or the international version? For the time being, there is no substantive difference between the two. You should indicate at the intake which version you would like.
Should there be any new developments regarding ISO 27001 certification, we will of course keep you informed. Do you have any questions? Feel free to ask them.
