April delivered a remarkable array of ISO developments, reaffirming the standards community’s focus on trusted AI, resilient infrastructure, sustainable systems, and better human and organizational outcomes. From quality in internships and energy audits to advancing AI governance and environmental transparency, this month reflects a dynamic intersection of trust, digitalization, and sustainability.
As we proceed into 2025, March brings a wave of influential ISO developments, spanning artificial intelligence, sustainability, facility management, innovation ecosystems, and circular economy value networks. This month’s updates emphasize trust, resilience, transparency, and integrated lifecycle management—cornerstones for long-term organizational success in a rapidly evolving world.
As the year gains momentum, the ISO standards landscape continues to deliver critical updates supporting organizations in areas such as anti-corruption, cybersecurity, systems engineering, and sustainable collaboration. This month’s developments emphasize trust, resilience, and integrated lifecycle management—key enablers for business continuity and long-term value creation.
In a significant move for global cybersecurity coordination, ISO has formally published “ISO/IEC 20153:2025 Information technology — OASIS Common Security Advisory Framework (CSAF) v2.0 Specification“ as an international standard in early 2025. This milestone reflects the growing demand for structured, machine-readable vulnerability disclosure formats that promote faster and more consistent responses to security threats.
As we step into the new year, the world of ISO standards continues to evolve, bringing fresh guidance to support organizations in risk management, IT governance, human resources, security, and sustainability. This month, we highlight the latest developments, including newly published standards, draft standards in progress, and emerging trends shaping the landscape for businesses worldwide.
The newly released Cyber Security Standards position paper from Standards Australia underscores the critical role of standards in strengthening Australia’s cyber resilience amid rising cyber threats. The paper highlights key recommendations to enhance national security and economic stability by aligning with international best practices and engaging industry stakeholders. The paper is developed in collaboration with Standards Australia, the government, and a selection of businesses. The report calls for more substantial adoption and awareness of cyber security standards to protect digital infrastructure and drive innovation.
Let’s talk about management system standards. ISO has developed a diverse portfolio of management system standards designed to help organizations enhance performance, ensure compliance, and achieve strategic objectives across various domains. While ISO 9001 (quality management) and ISO 14001 (environmental management) are among the most widely recognized and implemented, there’s much more to explore. ISO’s suite of standards extends far beyond, offering structured frameworks to improve efficiency, resilience, and sustainability. In this post, you’ll find an overview of key ISO management system standards categorized by subject, showcasing how they contribute to effective and sustainable management practices.
Staying ahead in the ever-evolving global business landscape requires proactive engagement with emerging standards. Being involved early in standardization projects offers strategic insights and positions your organization to influence best practices, ensuring alignment with industry needs. Below is an overview of new proposals (NPs) and activated work items (AWIs) from ISO’s December list, showcasing key areas such as circular economy, innovation management, IT management, and more.
ISO/IEC DIS 27028, offering guidance on ISO/IEC 27002 attributes for information security, cybersecurity, and privacy protection, has officially been balloted as a Draft International Standard (DIS). Read it now by purchasing a copy, or stay tuned as it progresses toward publication.
Mark your calendars for January 23! The ISO/IEC Committee on Information Technology (ISO/IEC JTC 1) hosts an insightful foresight workshop that dives into how groundbreaking digital and information technologies transform our lives.