Beschreibung
ISO/IEC 27006:2015 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021‑1 and ISO/IEC 27001. It is primarily intended to support the accreditation of certification bodies providing ISMS certification.
ISO.org
Weiterführende Links
Das Dokument kann hier erworben werden.
Schlagwörter
Information technology — Security techniques — Requirements for bodies providing audit and certification of information security management systems
Status
In Überarbeitung: Stand 2021