ISO/IEC TS 27116-1

ISO/IEC TS 27116-1 — Information security, cybersecurity and privacy protection — Framework for customised and multipurpose evaluation

[DRAFT]

Abstract

[ISO/IEC TS 27116-1] "defines a general framework for customized and multipurpose evaluation.” (!)

[Source: Preliminary Wowrk Item Oct 2025]

Introduction

Scope

Structure

Status

A standard development project commenced in 2024, producing a Preliminary Work Item in October 2025.

Commentary

The PWI was incomplete so I still don’t know what kind of ‘evaluations’ this standard will cover. Evaluation of what? Against what? Why? How? When? By whom?

So many questions but next to no answers thus far.

The dash-1 suggests this may be a multi-part standard. I have no idea what other parts are planned, if any.

This page last updated:

26 January 2026

ISO27001 security