TTBS Standards Database
TTS/ISO/IEC 27006:2009
Information Technology - Security Techniques - Requirements for Bodies Providing Audit and Certification of Information Security Management Systems
| Subject Area | ICT - Information and Communications Technology |
| Year of Declaration | 2009 |
| Status | Voluntary |
| ICS Number | 35.040 |
| Stage | Withdrawn |
| Number of Pages | 36 |
| Price | Available on request |
Scope of this Standard
ISO/IEC 27006:2007 specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021 and ISO/IEC 27001. It is primarily intended to support the accreditation of certification bodies providing ISMS certification. The requirements contained in ISO/IEC 27006:2007 need to be demonstrated in terms of competence and reliability by any body providing ISMS certification, and the guidance contained in ISO/IEC 27006:2007 provides additional interpretation of these requirements for any body providing ISMS certification.
Legal Notice of Declaration:
Legal Notice of Revocation Approvals: