BS ISO/IEC 27006:2015
Withdrawn
A Withdrawn Standard is one, which is removed from sale, and its unique number can no longer be used. The Standard can be withdrawn and not replaced, or it can be withdrawn and replaced by a Standard with a different number.
Information technology. Security techniques. Requirements for bodies providing audit and certification of information security management systems
Hardcopy
09-04-2020
English
31-10-2015
Important note : Users cannot be edited or removed once added to your Multi user PDF.
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Principles
5 General requirements
6 Structural requirements
7 Resource requirements
8 Information requirements
9 Process requirements
10 Management system requirements for certification
bodies
Annex A (informative) - Knowledge and skills for ISMS
auditing and certification
Annex B (normative) - Audit time
Annex C (informative) - Methods for audit time calculations
Annex D (informative) - Guidance for review of implemented
ISO/IEC 27001:2013, Annex A controls
Bibliography
Defines requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1 and ISO/IEC 27001.
| Committee |
IST/33/1
|
| DevelopmentNote |
Supersedes 06/30148917 DC. (03/2007) Supersedes 11/30246891 DC. (02/2012) Supersedes 15/30266416 DC. (10/2015) Also available as part of BS KIT 270. (07/2016)
|
| DocumentType |
Standard
|
| Pages |
46
|
| PublisherName |
British Standards Institution
|
| Status |
Withdrawn
|
| Supersedes |
| Standards | Relationship |
| ISO/IEC 27006:2015 | Identical |
| ISO 19011:2011 | Guidelines for auditing management systems |
| ISO/IEC 27001:2013 | Information technology — Security techniques — Information security management systems — Requirements |
| ISO 9001:2015 | Quality management systems — Requirements |
| ISO/IEC 27007:2017 | Information technology Security techniques Guidelines for information security management systems auditing |
| ISO/IEC 27000:2016 | Information technology Security techniques Information security management systems Overview and vocabulary |
| ISO/IEC 17021-1:2015 | Conformity assessment Requirements for bodies providing audit and certification of management systems Part 1: Requirements |
Access your standards online with a subscription
Features
-
Simple online access to standards, technical information and regulations.
-
Critical updates of standards and customisable alerts and notifications.
-
Multi-user online standards collection: secure, flexible and cost effective.