Home
Subscribe to updates

ISO/IEC 27006:2007

Information technology -- Security techniques -- Requirements for bodies providing audit and certification of information security management systems

This standard has been revised by: ISO/IEC 27006:2011

 

Abstract

ISO/IEC 27006:2007 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021 and ISO/IEC 27001. It is primarily intended to support the accreditation of certification bodies providing ISMS certification.

The requirements contained in ISO/IEC 27006:2007 need to be demonstrated in terms of competence and reliability by any body providing ISMS certification, and the guidance contained in ISO/IEC 27006:2007 provides additional interpretation of these requirements for any body providing ISMS certification.

 

Contact customer services

Send your enquiry by email
or call us on +41 22 749 08 88
09:00 – 12:30, 14:00 – 17:00  (UTC+1).

Related standards

Standards in the same category (35.040)
Standards from the same committee

The following article has been added to your basket
Continue shopping  Proceed to checkout