6
April 2023

URM Transitions to ISO 27001:2022

Having been certified to ISO 27001 since 2005, when the world’s foremost information security management standard was originally published, URM became one of the UK’s first organisations to transition to the latest version of the Standard (2022) in April 2023.  Lisa Dargan, Director, at URM comments “ISO 27001 has always been absolutely central to the consultancy, training services and products we offer, and we were delighted to be one of the first to transition to the 2022 version. Our experiences are proving invaluable too in helping to advise and guide others achieve a seamless transition.” Lisa adds “URM’s successful transition was testament to our approach in implementing and maintaining ISO 27001 and was also a great endorsement for our risk management software, Abriska.  The software tool is fully compatible with the new Standard, is populated with all the 2022 controls and offers a variety of transition options.”

ISO 27001:2022 - A.5 Organisational Controls (Supplier Management)

Latest update:
27 Jun
2025

URM’s blog explains the importance of the 5 supplier management controls in ISO 27001 & provides practical guidance on how to implement each control.

Read more
Thumbnail of the Blog Illustration
Information Security
updateD:
27/6/2025
ISO 27001:2022 - A.5 Organisational Controls (Access Management)

URM’s blog explores why the access controls in ISO 27001 matter, and how to implement each control in full conformance with both the Standard and best practice.

Read more
Thumbnail of the Blog Illustration
Information Security
updateD:
27/6/2025
ISO 27001:2022 - A.5 Organisational Controls (Information Security Management)

URM explains the 8 information security management controls included within the ‘Organisational controls’ theme and how to prepare for an audit of each control

Read more
Thumbnail of the Blog Illustration
Cyber Security
updateD:
26/6/2025
Cyber Essentials Questions Answered: Technical Requirements, BYOD Compliance and the Future of the Scheme

URM’s blog answers key questions about CE, focusing specifically on its technical requirements, use of BYOD, and how the scheme may change in the future.

Read more
"
Our URM QSA always consults with the aim of making compliance as straightforward as possible, and pointed us towards a way of significantly minimising and streamlining our assessment scope that neither we nor our previous PCI DSS consultancy provider had considered.
CISO at University of Surrey
contact US

Let us help you

Let us help you in your compliance journey by completing the form and letting us know how we can best support you.