Assessment of the Possibility of Implementing an Information Security Management System According to the International Standard (ISO/IEC 27001:2022)
DOI:
https://doi.org/10.31272/ijes.v24iخاص.1555Keywords:
Information Security, ISO/IEC 27001:2022, Information Security Management System.Abstract
The research aims to assess the extent of compliance of the General Company for Gas Filling and Services with the requirements of the international standard ISO/IEC 27001:2022, through a case study methodology using a standardized checklist and field study. The results showed that the overall implementation level reached 86.73%, with a gap of 13.27%. The analysis revealed that the gaps were centered on weaknesses in security documentation, risk management, and security awareness. The study concluded that there is a regulatory foundation capable of development, alongside existing gaps that require addressing. It recommended developing a comprehensive security policy, enhancing documentation, establishing an effective risk management framework, and implementing intensive training programs.
Downloads
Published
Issue
Section
License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.
