The ISO/IEC 27001 Information Security Management System Standard was revised by the International Standards Organization (ISO) and published in October 2022. A period of 3 years has been foreseen for the transition and the deadline has been determined as 31.10.2025. Until this date, our existing customers are required to complete their transition studies and to carry out audits in accordance with ISO/IEC 27001:2022 standard.

The KingCert Transition Process
Our organization has determined the transition process to ISO/IEC 27001:2022 as given below:

a) Organizations to be certified by KingCert for the first time
The first certification applications made according to ISO/IEC 27001:2013 will be accepted until 31.07.2023 and the first certification applications made according to ISO/IEC 27001:2022 will start to be accepted as of 01.08.2023. Audits will be carried out according to ISO/IEC 27001:2022 for all applications made after 01.08.2023.
But, KingCert after September 2023, an accredited document can be issued after the ISO/IEC 27001:2022 updated accreditation is published.

b) Organizations Certified by KingCert
All organizations certified by our organization according to ISO/IEC 27001:2013 should prepare a transition plan and submit it to KingCert in order to harmonize their existing management systems with the new version. Surveillance and re-certification audits to be carried out as of 01.08.2023 will be carried out in accordance with ISO/IEC 27001:2022.

In case the transition is carried out under surveillance control, by adding 1 day to the duration of the surveillance audit; in case of re-certification audit, 0.5 days will be added, and if a separate transition audit is requested, a minimum audit period of 1 day will be determined.

A summary of the changes made to the new standard can be found here.

Or you can view it on our "Documents" page under the "Corporate" tab.