ISO/IEC 27006:2011

Information technology — Security techniques — Requirements for bodies providing audit and certification of information security management systems ISO/IEC 27006:2011

Publication date:   Nov 29, 2011

95.99 Withdrawal of Standard   Sep 30, 2015

General information

95.99 Withdrawal of Standard   Sep 30, 2015

ISO/IEC

ISO/IEC JTC 1/SC 27 Information security, cybersecurity and privacy protection

International Standard

35.030   IT Security | 03.100.70   Management systems

Buying

Withdrawn

Language in which you want to receive the document.

Scope

ISO/IEC 27006:2011 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021 and ISO/IEC 27001. It is primarily intended to support the accreditation of certification bodies providing ISMS certification.
The requirements contained in ISO/IEC 27006:2011 need to be demonstrated in terms of competence and reliability by any body providing ISMS certification, and the guidance contained in ISO/IEC 27006:2011 provides additional interpretation of these requirements for any body providing ISMS certification.

Life cycle

PREVIOUSLY

WITHDRAWN
ISO/IEC 27006:2007

NOW

WITHDRAWN
ISO/IEC 27006:2011
95.99 Withdrawal of Standard
Sep 30, 2015

REVISED BY

WITHDRAWN
ISO/IEC 27006:2015