Assessment of the Possibility of Implementing an Information Security Management System According to the International Standard (ISO/IEC 27001:2022)

Authors

  • Harith Zaid Mahdi Jaafar
  • Makkiyah Kraidi Bunyan Alkabi

DOI:

https://doi.org/10.31272/ijes.v24iخاص.1555

Keywords:

Information Security, ISO/IEC 27001:2022, Information Security Management System.

Abstract

The research aims to assess the extent of compliance of the General Company for Gas Filling and Services with the requirements of the international standard ISO/IEC 27001:2022, through a case study methodology using a standardized checklist and field study. The results showed that the overall implementation level reached 86.73%, with a gap of 13.27%. The analysis revealed that the gaps were centered on weaknesses in security documentation, risk management, and security awareness. The study concluded that there is a regulatory foundation capable of development, alongside existing gaps that require addressing. It recommended developing a comprehensive security policy, enhancing documentation, establishing an effective risk management framework, and implementing intensive training programs.

Downloads

Published

2026-07-07

How to Cite

Assessment of the Possibility of Implementing an Information Security Management System According to the International Standard (ISO/IEC 27001:2022). (2026). Iraqi Journal for Economic Sciences, 24(خاص), 589-6. https://doi.org/10.31272/ijes.v24iخاص.1555