标准号:ISO/IEC 27006-2007
实施状态:作废
中文名称:信息技术.安全技术.信息安全管理系统审核和认证的机构要求
英文名称:Information technology - Security techniques - Requirements for bodies providing audit and certification of information security management systems
发布日期:2007-03
被替代标准:ISO/IEC 27006-2011
代替标准:ISO/IEC FDIS 27006-2006
采用标准:ANSI/INCITS/ISO/IEC 27006-2008,IDT;BS ISO/IEC 27006-2007,IDT;GB/T 25067-2010,IDT;JIS Q 27006-2008,IDT;PN-ISO/IEC 27006-2009,IDT;GOST R ISO/IEC 27006-2008,IDT
起草单位:ISO/IEC JTC 1/SC 27
标准简介:This International Standard specifies requirements and provides guidance for bodies providing audit and
certification of an information security management system (ISMS), in addition to the requirements contained
within ISO/IEC 17021 and ISO/IEC 27001. It is primarily intended to support the accreditation of certification
bodies providing ISMS certification.
The requirements contained in this International Standard need to be demonstrated in terms of competence
and reliability by any body providing ISMS certification, and the guidance contained in this International
Standard provides additional interpretation of these requirements for any body providing ISMS certification.
NOTE This International Standard can be used as a criteria document for accreditation, peer assessment or other audit
processes.
文件格式:PDF
文件大小:359.47KB
文件页数:44
(以上信息更新时间为:2019-11-22)
ISO_IEC 27006-2007 信息技术.安全技术.信息安全管理系统审核和认证的机构要求.pdf
(359.47 KB)
|
|
