How many controls does ISO/IEC 29147:2018 have?

ISO/IEC 29147:2018 contains 32 controls organized across 5 domains.

Where does ISO/IEC 29147:2018 apply?

ISO/IEC 29147:2018 is applicable in International. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does ISO/IEC 29147:2018 map to?

ISO/IEC 29147:2018 has control-to-control mappings with 423 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with ISO/IEC 29147:2018 compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

ISO/IEC 29147:2018

ISO/IEC 29147 provides guidelines for the disclosure of potential vulnerabilities in products and online services. It addresses how vendors should receive vulnerability reports, process them, and publish advisories.

Domains

Clause 8-9: Coordination and Disclosure Policy

Clause 7: Publishing Vulnerability Advisories

Clause 6: Receiving Vulnerability Reports

Clause 5: Vulnerability Disclosure Concepts

Clause 1-4: Introduction

Frequently Asked Questions

Map ISO/IEC 29147:2018 to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform