ISO/IEC 27006-1:2024

Information security, cybersecurity and privacy protection — Requirements for bodies providing audit and certification of information security management systems — Part 1: General ISO/IEC 27006-1:2024

Publication date:   Mar 1, 2024

General information

60.60 Standard published   Mar 1, 2024

ISO/IEC

ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection

International Standard

35.030   IT Security | 03.120.20   Product and company certification. Conformity assessment

Buying

Published

Language in which you want to receive the document.

Scope

This document specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1.
The requirements contained in this document are demonstrated in terms of competence and reliability by bodies providing ISMS certification. The guidance contained in this document provides additional interpretation of these requirements for bodies providing ISMS certification.
NOTE       This document can be used as a criteria document for accreditation, peer assessment or other audit processes.

Life cycle

PREVIOUSLY

WITHDRAWN
ISO/IEC 27006:2015

WITHDRAWN
ISO/IEC 27006:2015/Amd 1:2020

NOW

PUBLISHED
ISO/IEC 27006-1:2024
60.60 Standard published
Mar 1, 2024

REVISED BY

IN_DEVELOPMENT
ISO/IEC PWI 27006-1