Iso 27006

Enter .

Unlike other management system standards (like ISO 9001 Quality), information security audits involve exposure to highly sensitive data (network diagrams, vulnerability reports, trade secrets). iso 27006

ISO/IEC 27006 specifies requirements for the of bodies certifying Information Security Management Systems (ISMS) against ISO/IEC 27001. It supplements the existing general requirements of ISO/IEC 17021-1 (Conformity assessment — Requirements for bodies providing audit and certification of management systems). It supplements the existing general requirements of ISO/IEC

Note: For the most current version, always check with your national standards body (e.g., ISO, ANSI, BSI). It is built upon the generic standard for

ISO/IEC 27006 does not exist in a vacuum. It is built upon the generic standard for management system certification, (Conformity assessment — Requirements for bodies providing audit and certification of management systems). ISO/IEC 27006 takes the general requirements of 17021-1 and tailors them specifically for the discipline of Information Security.

This website makes use of cookies to enhance browsing experience and provide additional functionality. Privacy Policy

Allow cookies