As the year gains momentum, the ISO standards landscape continues to deliver critical updates supporting organizations in areas such as anti-corruption, cybersecurity, systems engineering, and sustainable collaboration. This month’s developments emphasize trust, resilience, and integrated lifecycle management—key enablers for business continuity and long-term value creation.
Newly Published Standards
ISO 37001:2025 – Anti-bribery management systems — Requirements with guidance for use
This updated version strengthens the framework for preventing, detecting, and responding to bribery risks. It offers improved integration with other management system standards and emphasizes leadership accountability, risk assessment, and third-party due diligence.
ISO/IEC 20153 formalizes CSAF 2.0 as the global benchmark for sharing machine-readable security advisories. It helps organizations automate vulnerability handling and align with secure software development practices and regulatory expectations.
Final Draft International Standards (FDIS) – Editorials before publication
ISO/FDIS 37303 – Compliance management systems — Guidance for competence management
Now at its final stage before publication, this standard provides structured guidance on developing, assessing, and maintaining the competencies required for effective compliance management. It aligns with ISO 37301 and reinforces the people dimension of governance and ethics programs.
ISO/FDIS 24760 – Information security, cybersecurity, and privacy protection — A framework for identity management
- Part 1: Core concepts and terminology
- Part 2: Reference architecture and requirements
- Part 3: Practice
To address the need to efficiently and effectively implement systems that make identity-based decisions, the ISO/IEC 24760 series specifies a framework for the issuance, administration, and use of data that serves to characterize individuals, organizations, or information technology components that operate on behalf of individuals or organizations.
ISO/FDIS 50002 – Energy audits
- Part 1: General requirements with guidance for use
- Part 2: Guidance for conducting an energy audit using ISO 50002-1 in buildings
- Part 3: Guidance for conducting an energy audit using ISO 50002-1 in processes
Specifies the process requirements for carrying out an energy audit of energy performance. It applies to all types of establishments and organizations and all forms of energy and energy use.
ISO/FDIS 45005 – Information technology — Artificial intelligence — AI system impact assessment
This document guides organizations performing AI system impact assessments for individuals and societies affected by an AI system and its intended and foreseeable applications.
Draft International Standards (DIS) – Nearing Publication
Offers a practical framework for managing relationships between buyers and providers of digital services and information products, enhancing accountability and alignment.
Supports integrating agile principles into systems engineering, offering pathways to balance adaptability with discipline in complex or regulated environments.
An update to systems engineering lifecycle planning guidance, focusing on governance, coordination, and effective delivery of complex technical systems.
ISO/IEC/IEEE DIS 23612 – Software and systems engineering — Incident management
Introduces a comprehensive approach to managing software and systems engineering incidents, spanning prevention, detection, response, and learning.
This document provides guidelines for internal and external human capital reporting (HCR). The objective is to consider and make transparent the human capital contribution to the organization to support workforce sustainability.
ISO/DIS 29997 – Internships — Quality guidelines for host organizations
The standard criteria for quality internships will define related terms and concepts, a quality framework for internships, quality criteria, and best practices.
Specifies requirements for self-declared environmental claims regarding products, including statements, symbols, and graphics.
ISO/DIS 14024- Environmental statements and programmes for products — Ecolabels
Establishes the principles and procedures for developing Type I environmental labelling programmes, including selecting product categories, product environmental criteria, and product function characteristics, and assessing and demonstrating compliance.
This document guides organizations in addressing security threats and failures in artificial intelligence (AI) systems.
Committee Drafts (CD): Key Standards in Progress
ISO/CD 32212 – Sustainable finance — Net zero transition planning for financial institutions
This standard will provide high-level principles, a framework, and requirements for financial institutions to develop plans concerning their transition to net-zero emissions and the content that should be contained within these transition plans.
Describes the fundamentals of product certification and provides guidelines for understanding, developing, operating, or maintaining certification schemes for products, processes, and services.
ISO/CD 42503 – Sharing economy — Framework for implementation
This document provides a sharing economy framework for implementation. It applies to all public, private, and voluntary organizations.
Working Drafts (WD): Early-Stage Developments to Watch
ISO/WD 5127 – Information and documentation — Foundation and vocabulary
A revision of a core vocabulary standard supporting consistent terminology in information and documentation domains, helping reduce ambiguity in technical communication.
Provides guidelines intended to assist organizations in evaluating the information security performance and the effectiveness of an information security management system to fulfill the requirements of ISO/IEC 27001.
Activated Work Item (AWI): First step of development
A promising new standard aimed at guiding organizations in aligning collaborative efforts with the SDGs, embedding sustainability in cross-sector partnerships.
ISO/AWI 37202 – Safeguarding for organizations — Guidance
A foundational work item addressing safeguarding practices to protect individuals and groups in organizational contexts, especially relevant for NGOs, education, and social services.
ISO/AWI 14050 – Environmental management — Vocabulary
This document defines terms used in documents in the fields of environmental management systems and tools in support of sustainable development.
ISO/AWI 20671-5 – Brand evaluation — Part 5: Vocabulary
This standard suits organizations to conduct brand evaluation, brand cultivation, management, and other brand-related activities.
This document guides addressing risks in generative artificial intelligence (AI) systems.
This document provides methods and mechanisms to assess the reliability of an AI system.
Looking ahead
This month’s developments highlight a growing focus on transparency, security, and responsible collaboration. From anti-bribery controls to agile systems engineering, from trust in digital advisories to sustainable partnerships, ISO’s evolving body of standards is helping organizations build capacity for ethical, resilient growth.
At StandardsHero, we’re committed to helping top management stay ahead of these changes, translating complex standards into actionable strategies. Stay tuned for our March update as we continue tracking the standards shaping tomorrow’s business landscape.