• Shopping Cart
    There are no items in your cart
We noticed you’re not on the correct regional site. Switch to our AMERICAS site for the best experience.
Dismiss alert

I.S. EN ISO/IEC 27006:2020&LC:2021

Current

Current

The latest, up-to-date edition.

Information technology - Security techniques - Requirements for bodies providing audit and certification of information security management systems (ISO/IEC 27006:2015, including Amd 1:2020)

Available format(s)

Hardcopy , PDF

Language(s)

English

Published date

11-03-2021

Preview

For Harmonized Standards, check the EU site to confirm that the Standard is cited in the Official Journal.

Only cited Standards give presumption of conformance to New Approach Directives/Regulations.

£54.77
Excluding VAT

Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Principles
5 General requirements
6 Structural requirements
7 Resource requirements
8 Information requirements
9 Process requirements
10 Management system requirements for certification bodies
Annex A (informative) Knowledge and skills for ISMS auditing and certification
Annex B (normative) Audit time
Annex C (informative) Methods for audit time calculations
Annex D (informative) Guidance for review of implemented ISO/IEC 27001:2013, Annex A controls
Bibliography

This International Standard specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1 and ISO/IEC 27001.

Committee
ISO/IEC JTC 1
DocumentType
Standard
Pages
62
ProductNote
The date of any NSAI previous adoption may not match the date of its original CEN/CENELEC document.
PublisherName
National Standards Authority of Ireland
Status
Current
Supersedes

Standards Relationship
ISO/IEC 27006:2015/Amd 1:2020 Identical
EN ISO/IEC 27006:2020 Identical
EN ISO/IEC 27006:2020 Identical

Access your standards online with a subscription

Features

  • Simple online access to standards, technical information and regulations.

  • Critical updates of standards and customisable alerts and notifications.

  • Multi-user online standards collection: secure, flexible and cost effective.