Replace any “ISO 27024” requirement in your documentation with:
While the main clauses outline how to manage the system, outlines what controls you can implement. This is where the standard intersects with ISO/IEC 27002 (the code of practice for information security controls). iso 27024