Information technology -- Security techniques -- Requirements for bodies providing audit and certification of information security management systems
(Not available in French)
This standard has been revised by: ISO/IEC 27006:2015
ISO/IEC 27006:2011 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021 and ISO/IEC 27001. It is primarily intended to support the accreditation of certification bodies providing ISMS certification.
The requirements contained in ISO/IEC 27006:2011 need to be demonstrated in terms of competence and reliability by any body providing ISMS certification, and the guidance contained in ISO/IEC 27006:2011 provides additional interpretation of these requirements for any body providing ISMS certification.
Document published on: 2011-12-01 Edition: 2 (Monolingual) ICS: 35.040 Status: Withdrawn Stage: 95.99 (2015-09-30) TC/SC: ISO/IEC JTC 1/SC 27 Number of Pages:
Revised by: ISO/IEC 27006:2015
Revises: ISO/IEC 27006:2007
No corrigenda or amendments available