There has also been an update to ISO/IEC 27002:2017, Code of practice for information security controls, based on the corrections to control 8.1. that you may wish to consider when reviewing your security controls. They are:
8.1.1 Inventory of assets
Information, other assets associated with information and information processing facilities should be identified and an inventory of these assets should be drawn up and maintained.
8.1.3 Acceptable use of assets
Employees and external party users using or having access to the organization’s assets should be made aware of the information security requirements of the organization’s assets associated with information and information processing facilities and resources.
ISO/IEC 27000:2017, Overview and vocabulary, is also updated to remain aligned.