April delivered a remarkable array of ISO developments, reaffirming the standards community’s focus on trusted AI, resilient infrastructure, sustainable systems, and better human and organizational outcomes. From quality in internships and energy audits to advancing AI governance and environmental transparency, this month reflects a dynamic intersection of trust, digitalization, and sustainability.
In a significant move for global cybersecurity coordination, ISO has formally published “ISO/IEC 20153:2025 Information technology — OASIS Common Security Advisory Framework (CSAF) v2.0 Specification“ as an international standard in early 2025. This milestone reflects the growing demand for structured, machine-readable vulnerability disclosure formats that promote faster and more consistent responses to security threats.
In February 2025, the International Organization for Standardization (ISO) released a significant revision to its anti-bribery management standard: ISO 37001:2025, Anti-bribery management systems — Requirements with guidance for use. This updated edition replaces the 2016 version and reflects years of global experience implementing anti-bribery controls in public and private sector organizations.
As a top-level executive, you have undoubtedly encountered standards and frameworks in your strategic management efforts. But do you fully understand their distinct roles and how they can shape your organization’s success? This post will explore the difference between standards and frameworks and provide practical insights into leveraging each effectively.
Let’s talk about something important that happened at the end of last year. In November 2024, a significant step forward was taken for organizations committed to sustainability and responsible practices with the publication of IWA 48:2024, Framework for Implementing Environmental, Social, and Governance (ESG) Principles.