Some of the main new updates in ISO/IEC 27001:2022 include a significant change to Annex A, minor updates to clauses, and a change in the title of the standard.
ISO/IEC 27001:2013, the full title of the new version is ISO/IEC 27001:2022 Information Security,

Cybersecurity, and Privacy Protection.
The section that underwent the most significant changes is Annex A of the ISO/IEC 27001 standard, which has been aligned with the amendments in ISO/IEC 27002:2022, published earlier this year.
Regarding other parts, clauses 4 to 10 have undergone several minor changes, particularly in clauses 4.2, 6.2, 6.3, and 8.1 where additional new content has been added. Other updates include minor changes in terminology and the restructuring of sentences and clauses. However, the title and order of these clauses remain the same.
Clause 4 - Organization Context Clause 5 - Leadership Clause 6 - Planning Clause 7 - Support Clause 8 -

Operation Clause 9 - Performance Evaluation Clause 10 - Improvement
Annex A of ISO/IEC 27001:2022 contains changes in the number and list of controls within groups. The title of this Annex has also been changed from "Control Objectives and Controls" to "Information Security Control Reference". Therefore, the control objectives of each control group that were present in the previous version of the standard have now been removed.

The number of controls in Annex A has been reduced from 114 to 93. This reduction mainly came from the merging of many controls. 35 controls remain the same, 23 controls have been renamed, 57 controls have been merged into 24 controls, and one control has been split into two. 93 controls have been restructured into four control groups or sections.

The new control groups in ISO/IEC 27001:2022 are:
A.5 Organizational Controls - contains 37 controls A.6 People Controls - contains 8 controls A.7 Physical Controls - contains 14 controls A.8 Technological Controls - contains 34 controls

ISO/IEC 27001:2022 has also added the following 11 new controls to its Annex A:
1. Threat Intelligence Data
2. Information Security for Cloud Services
3. ICT Business Continuity Readiness
4. Physical Security Monitoring
5. Configuration Management
6. Information Disposal
7. Data Masking
8. Data Leakage Prevention
9. Activity Monitoring
10. Web Filtering
11. Secure Coding

The new changes in ISO/IEC 27001:2022 will not impact the current ISO/IEC 27001 certification.

For those interested in getting certified in accordance with this, ISS has released new transition training for ISO/IEC 27001 and updated training courses for lead auditors and chief implementers of ISO/IEC 27001.
The transition period to ISO 27001, i.e., the period of transitioning to the new 2022 version, is three years from the date of its issuance. The deadline for transition is October 31, 2025.