NF EN ISO/IEC 27006-1

NF EN ISO/IEC 27006-1

March 2024
Standard Current

Information security, cybersecurity and privacy protection - Requirements for bodies providing audit and certification of information security management systems - Part 1 : general

This document specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1.The requirements contained in this document are demonstrated in terms of competence and reliability by bodies providing ISMS certification. The guidance contained in this document provides additional interpretation of these requirements for bodies providing ISMS certification.NOTE       This document can be used as a criteria document for accreditation, peer assessment or other audit processes.

See more
View the extract New: UPSELL service
Main informations

Collections

National standards and national normative documents

Publication date

March 2024

Number of pages

68 p.

Reference

NF EN ISO/IEC 27006-1

ICS Codes

03.120.20   Product and company certification. Conformity assessment
35.030   IT Security

Classification index

Z74-224-1

Print number

1

International kinship

ISO/IEC 27006-1:2024

European kinship

EN ISO/IEC 27006-1:2024
Sumary
Information security, cybersecurity and privacy protection - Requirements for bodies providing audit and certification of information security management systems - Part 1 : general

This document specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1.

The requirements contained in this document are demonstrated in terms of competence and reliability by bodies providing ISMS certification. The guidance contained in this document provides additional interpretation of these requirements for bodies providing ISMS certification.

NOTE       This document can be used as a criteria document for accreditation, peer assessment or other audit processes.

Replaced standards (1)
NF EN ISO/IEC 27006
November 2020
Standard Cancelled
Information technology - Security techniques - Requirements for bodies providing audit and certification of information security management systems

Le présent document, spécifie les exigences et fournit des recommandations pour les organismes procédant à l'audit et à la certification d'un système de management de la sécurité de l'information (SMSI) , en plus des exigences contenues dans l'ISO/IEC 17021-1 et l'ISO/IEC 27001. Il a pour principal objet de soutenir l'accréditation des organismes de certification qui procèdent à la certification de SMSI. Le présent amendement NF EN ISO/IEC 27006+A1, modifie les paragraphes 7.2.1.1, 7.2.1.1, 8.2.1, 9.3.1.1, B.2.1, B.3.6 et B.6, de la norme homologuée NF EN ISO/IEC 27006, d'Octobre 2015.

New: UPSELL service
- The UPSELL service allows you to easily update one of your standards.
- With a single click, add a new language, the Requirements or Redline+ service and add one or more additional users.
- Whether you are in the process of acquiring a standard or it is already available in your personal space, the UPSELL service is available at every stage to help you understand it and implement it within your organization.
Need to identify, monitor and decipher standards?

COBAZ is the simple and effective solution to meet the normative needs related to your activity, in France and abroad.

Available by subscription, CObaz is THE modular solution to compose according to your needs today and tomorrow. Quickly discover CObaz!

Request your free, no-obligation live demo

I discover COBAZ