KIT 270 Standards for providing audit and certification of information technology management systems

KIT 270

Standards for providing audit and certification of information technology management systems

Status : Current   Published : May 2016

Format
HARDCOPY



Standards for providing audit and certification of information security technology management systems

ISO/IEC 17021-1:2015 and BS ISO/IEC 27006:2015 are complimentary standards that can help you through information technology management audit and certification. 

Any organization that performs certification and auditing must demonstrate that it's competent, consistent and impartial. To help achieve that in the field of conformity assessment, ISO/IEC 17021-1:2015 sets out requirements for audit and certification bodies. It's not specific to a particular market, applying to SMEs and large companies, public and private sectors, and covering the auditing and certification of quality, environment and other management systems.

BS ISO/IEC 27006:2015contains the specialist requirements needed to audit or certify an Information Security Management System (ISMS) as conforming to BS ISO/IEC 27001. It's a supplement to the generic requirements for management systems audit and certification found in BS ISO/IEC 17021-1. It's primarily intended for use when assessing certification bodies offering ISMS certification services.

BS ISO/IEC 27006:2015 follows the same structure as ISO/IEC 17021-1:2015. Where necessary, it specifies additional requirements and guidance needed to assess management systems covering information security.




Standard NumberKIT 270
TitleStandards for providing audit and certification of information technology management systems
Titles in this kitBS ISO/IEC 27006:2015 Information technology. Security techniques. Requirements for bodies providing audit and certification of information security management systems

BS EN ISO/IEC 17021-1:2015 Conformity assessment. Requirements for bodies providing audit and certification of management systems

StatusCurrent
Publication Date04 May 2016
Normative References(Required to achieve compliance to this standard)No other standards are normatively referenced
Informative References(Provided for Information)No other standards are informatively referenced
DescriptorsData processing, Computers, Management, Data security, Data storage protection, Anti-burglar measures, Certification (approval), Organizations, Approval organizations, Certification bodies, Quality auditing, Personnel, Information exchange, Technical documents, Records (documents) IT and Information Management: Information and, Knowledge Management
ICS03.100.70
35.030
PublisherBSI
FormatA4
DeliveryNo
File Size0 KB
Price£336.00


 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents


Develop a PAS

Develop a fast-track standardization document in 9-12 months


Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version


BSOL

The faster, easier way to work with standards