BS ISO/IEC 27009:2020 - Information security, cybersecurity and privacy protection. Sector-specific application of ISO/IEC 27001. Requirements

BS ISO/IEC 27009:2020

Information security, cybersecurity and privacy protection. Sector-specific application of ISO/IEC 27001. Requirements

Status : Current   Published : April 2020

Format
PDF

Format
HARDCOPY



This document specifies the requirements for creating sector-specific standards that extend ISO/IEC 27001, and complement or amend ISO/IEC 27002 to support a specific sector (domain, application area or market).

This document explains how to:

  • include requirements in addition to those in ISO/IEC 27001 ,

  • refine or interpret any of the ISO/IEC 27001 requirements,

  • include controls in addition to those of ISO/IEC 27001:2013, Annex A and ISO/IEC 27002 ,

  • modify any of the controls of ISO/IEC 27001:2013, Annex A and ISO/IEC 27002 ,

  • add guidance to or modify the guidance of ISO/IEC 27002 .

This document specifies that additional or refined requirements do not invalidate the requirements in ISO/IEC 27001.

This document is applicable to those involved in producing sector-specific standards.




Standard NumberBS ISO/IEC 27009:2020
TitleInformation security, cybersecurity and privacy protection. Sector-specific application of ISO/IEC 27001. Requirements
StatusCurrent
Publication Date27 April 2020
Normative References(Required to achieve compliance to this standard)ISO/IEC 27001, ISO/IEC 27002, ISO/IEC 27000
Informative References(Provided for Information)ISO/IEC 27010, ISO/IEC 27011, ISO/IEC 27017, ISO/IEC 27019, ISO/IEC 27018
ReplacesBS ISO/IEC 27009:2016
International RelationshipsISO/IEC 27009:2020
Draft Superseded By19/30379031 DC
DescriptorsRecords (documents), Computers, Documents, Data storage protection, Data security, Information systems, Computer technology, Data processing, Classification systems, Anti-burglar measures, Computer networks, Technical documents, Management, Information exchange, Maintenance
ICS03.100.70
03.120.20
35.030
Title in FrenchSécurité de l'information, cybersécurité et protection des données personnelles. Application de l’ISO/IEC 27001 à un secteur spécifique. Exigences
CommitteeIST/33/1
ISBN978 0 539 01264 4
PublisherBSI
FormatA4
DeliveryYes
Pages26
File Size1.349 MB
Price£182.00


 Your basket
Your basket is empty

Multi-user access to over 3,500 medical device standards, regulations, expert commentaries and other documents


BSOL

The faster, easier way to work with standards


Tracked Changes

Understand the changes made to a standard with our new Tracked Changes version


Worldwide Standards
We can source any standard from anywhere in the world