SR EN ISO/IEC 27006-1:2024

Information security, cybersecurity and privacy protection - Requirements for bodies providing audit and certification of information security management systems - Part 1: General (ISO/IEC 27006-1:2024)

This document specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1. The requirements contained in this document are demonstrated in terms of competence and reliability by bodies providing ISMS certification. The guidance contained in this document provides additional interpretation of these requirements for bodies providing ISMS certification. NOTE       This document can be used as a criteria document for accreditation, peer assessment or other audit processes.


Status : Valid
Approval date : 4/30/2024
Number of pages : 58
ICS : 03.120.20 Product and company certification. Conformity assessment,35.030 IT Security
Technical Committee : 208 - IT security techniques

Relations with other standards: