Skip to main content
Back

ISO/IEC 27006:2015

Information technology -- Security techniques -- Requirements for bodies providing audit and certification of information security management systems

General information

Withdrawn from 01.03.2024
Directives or regulations
None

Standard history

Status
Date
Type
Name
01.03.2024
Main
27.03.2020
Amendment
30.09.2015
Main
Main
ISO/IEC 27006:2011
ISO/IEC 27006:2015 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1 and ISO/IEC 27001. It is primarily intended to support the accreditation of certification bodies providing ISMS certification.
The requirements contained in this International Standard need to be demonstrated in terms of competence and reliability by any body providing ISMS certification, and the guidance contained in this International Standard provides additional interpretation of these requirements for any body providing ISMS certification.
NOTE   This International Standard can be used as a criteria document for accreditation, peer assessment or other audit processes.

Required fields are indicated with *

*
*
*
PDF
82.61 € incl tax
Paper
82.61 € incl tax
Standard monitoring

Customers who bought this item also bought

Main

EVS-ISO/IEC 27003:2011

Information technology - Security techniques - Information security management system implementation guidance
Withdrawn from 03.05.2021
Main

ISO/IEC TR 27008:2011

Information technology -- Security techniques -- Guidelines for auditors on information security controls
Withdrawn from 14.01.2019
Main

ISO/IEC 27004:2016

Information technology -- Security techniques -- Information security management -- Monitoring, measurement, analysis and evaluation
Newest version Valid from 15.12.2016
Main

ISO 22320:2011

Societal security -- Emergency management -- Requirements for incident response
Withdrawn from 05.11.2018