The New ISO Standard Is Here. We’re Already There.

At L&E Research, staying ahead of the curve isn’t just a business goal: it’s how we build trust. That’s why we are finalizing our certification to ISO 27001:2022, the latest update to the international standard for information security. This new version brings stronger safeguards, clearer structures, and more relevant controls for today’s digital landscape.
We are not waiting for a deadline to act. We are meeting the future of data protection now.

What is ISO 27001?

ISO 27001 is the international benchmark for information security management. It defines how organizations should structure, implement, and maintain safeguards that protect sensitive data. Being certified means our security practices have been reviewed and approved by an independent, accredited body through a formal audit process. For our clients and partners, it is a clear signal that we take information protection seriously and that we have the policies, procedures, and culture in place to prove it.

What’s Different about the 2022 version?  

The 2022 update introduces structural and practical improvements to the standard. While the core principles remain the same, the refinements help organizations better align with modern digital environments. Here’s what changed:

• A more streamlined framework. The original 114 controls have been reduced and reorganized into 93, grouped into four categories: organizational, people, physical, and technological. This makes the standard easier to manage and apply.
• New areas of focus. Eleven new controls were added, including items like cloud service security, data deletion, and threat intelligence. These additions reflect the realities of today’s digital ecosystems.
• Improved clarity and alignment. Language updates throughout the document make the standard easier to understand and integrate with other ISO frameworks, such as those for quality or risk management.

While the changes may appear technical, the intention behind them is simple: to make security stronger, clearer, and more adaptable.

 Why it Matters for Our Clients  

Our upgrade to ISO 27001:2022 is about more than keeping up with industry standards. It reinforces our promise to protect the data and relationships that power your research. Here’s what it means for you:

• Greater assurance that your data is secure. The updated controls reflect current risks and ensure that our practices remain aligned with best available guidance.
• Less time spent on vendor assessments. Certifications to the latest version  helps meet IT and procurement requirements faster and more efficiently.
• Confidence that your partner is continuously improving. Our upgrade shows that we don’t wait for compliance deadlines to take action. We invest in systems that benefit you directly.

Part of a larger commitment    

L&E Research is also certified to ISO 20252:2019, the international standard for quality in managing research projects. Together, these two certifications represent our focus on protecting both the integrity of your research and the information it contains.
We believe security and quality go hand in hand. Our commitment to ISO 27001:2022 is one more example of how we bring that belief into practice.
Want to learn more about how our certifications support your research goals? Let’s start a conversation.