{"id":453669,"date":"2024-10-20T09:31:31","date_gmt":"2024-10-20T09:31:31","guid":{"rendered":"https:\/\/pdfstandards.shop\/product\/uncategorized\/bs-en-iso-iec-27006-12024\/"},"modified":"2024-10-26T17:40:13","modified_gmt":"2024-10-26T17:40:13","slug":"bs-en-iso-iec-27006-12024","status":"publish","type":"product","link":"https:\/\/pdfstandards.shop\/product\/publishers\/bsi\/bs-en-iso-iec-27006-12024\/","title":{"rendered":"BS EN ISO\/IEC 27006-1:2024"},"content":{"rendered":"<p>This document specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO\/IEC&nbsp;17021-1. The requirements contained in this document are demonstrated in terms of competence and reliability by bodies providing ISMS certification. The guidance contained in this document provides additional interpretation of these requirements for bodies providing ISMS certification. NOTE&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; This document can be used as a criteria document for accreditation, peer assessment or other audit processes.<\/p>\n<h4>PDF Catalog<\/h4>\n<table border=\"1px\" class=\"des-table\">\n<tr>\n<th>PDF Pages<\/th>\n<th>PDF Title<\/th>\n<\/tr>\n<tr>\n<td><b>2<b><\/td>\n<td>undefined  <\/td>\n<\/tr>\n<tr>\n<td><b>4<b><\/td>\n<td>European foreword <br \/> Endorsement notice  <\/td>\n<\/tr>\n<tr>\n<td><b>7<b><\/td>\n<td>Foreword   <\/td>\n<\/tr>\n<tr>\n<td><b>8<b><\/td>\n<td>Introduction   <\/td>\n<\/tr>\n<tr>\n<td><b>9<b><\/td>\n<td>1 Scope  <br \/> 2 Normative references  <br \/> 3 Terms and definitions   <\/td>\n<\/tr>\n<tr>\n<td><b>12<b><\/td>\n<td>4 Principles   <\/td>\n<\/tr>\n<tr>\n<td><b>13<b><\/td>\n<td>5 General requirements  <br \/> 5.1 \u200bLegal and contractual matters  <br \/> 5.2 Management of impartiality  <br \/> 5.2.1 General  <br \/> 5.2.2 Conflicts of interest  <br \/> 5.3 Liability and financing  <br \/> 6 Structural requirements  <br \/> 7 Resource requirements  <br \/> 7.1 Competence of personnel  <br \/> 7.1.1 General  <br \/> 7.1.2 Generic competence requirements   <\/td>\n<\/tr>\n<tr>\n<td><b>14<b><\/td>\n<td>7.1.3 Determination of competence criteria   <\/td>\n<\/tr>\n<tr>\n<td><b>16<b><\/td>\n<td>7.2 Personnel involved in the certification activities  <br \/> 7.2.1 General  <br \/> 7.2.2 Demonstration of auditor knowledge and experience   <\/td>\n<\/tr>\n<tr>\n<td><b>17<b><\/td>\n<td>7.3 Use of individual external auditors and external technical experts  <br \/> 7.4 Personnel records  <br \/> 7.5 Outsourcing  <br \/> 8 Information requirements  <br \/> 8.1 Public information  <br \/> 8.2 \u200bCertification documents  <br \/> 8.2.1 General   <\/td>\n<\/tr>\n<tr>\n<td><b>18<b><\/td>\n<td>8.2.2 ISMS Certification documents  <br \/> 8.2.3 Reference of other standards in the ISMS certification documents  <br \/> 8.3 Reference to certification and use of marks  <br \/> 8.4 Confidentiality  <br \/> 8.4.1 General  <br \/> 8.4.2 Access to organizational records  <br \/> 8.5 Information exchange between a certification body and its clients   <\/td>\n<\/tr>\n<tr>\n<td><b>19<b><\/td>\n<td>9 Process requirements  <br \/> 9.1 Pre-certification activities  <br \/> 9.1.1 Application  <br \/> 9.1.2 Application review  <br \/> 9.1.3 Audit programme   <\/td>\n<\/tr>\n<tr>\n<td><b>20<b><\/td>\n<td>9.1.4 Determining audit time   <\/td>\n<\/tr>\n<tr>\n<td><b>21<b><\/td>\n<td>9.1.5 Multi-site sampling   <\/td>\n<\/tr>\n<tr>\n<td><b>22<b><\/td>\n<td>9.1.6 Multiple management systems  <br \/> 9.2 \u200bPlanning audits  <br \/> 9.2.1 Determining audit objectives, scope and criteria  <br \/> 9.2.2 Audit team selection and assignments   <\/td>\n<\/tr>\n<tr>\n<td><b>23<b><\/td>\n<td>9.2.3 Audit plan  <br \/> 9.3 Initial certification  <br \/> 9.3.1 General  <br \/> 9.3.2 Initial certification audit   <\/td>\n<\/tr>\n<tr>\n<td><b>24<b><\/td>\n<td>9.4 Conducting audits  <br \/> 9.4.1 General  <br \/> 9.4.2 Specific elements of the ISMS audit  <br \/> 9.4.3 Audit report   <\/td>\n<\/tr>\n<tr>\n<td><b>25<b><\/td>\n<td>9.5 \u200bCertification decision  <br \/> 9.5.1 General  <br \/> 9.5.2 \u200bCertification decision  <br \/> 9.6 Maintaining certification  <br \/> 9.6.1 General  <br \/> 9.6.2 Surveillance activities   <\/td>\n<\/tr>\n<tr>\n<td><b>26<b><\/td>\n<td>9.6.3 Re-certification  <br \/> 9.6.4 Special audits  <br \/> 9.6.5 Suspending, withdrawing or reducing the scope of certification   <\/td>\n<\/tr>\n<tr>\n<td><b>27<b><\/td>\n<td>9.7 Appeals  <br \/> 9.8 Complaints  <br \/> 9.8.1 General  <br \/> 9.8.2 Complaints  <br \/> 9.9 Client records  <br \/> 10 \u200bManagement system requirements for certification bodies  <br \/> 10.1 Options  <br \/> 10.1.1 General  <br \/> 10.1.2 ISMS implementation  <br \/> 10.2 Option A: General management system requirements  <br \/> 10.3 Option B: Management system requirements in accordance with ISO 9001   <\/td>\n<\/tr>\n<tr>\n<td><b>28<b><\/td>\n<td>Annex A (normative)  Knowledge and skills for ISMS auditing and certification   <\/td>\n<\/tr>\n<tr>\n<td><b>29<b><\/td>\n<td>Annex B (informative)  Further competence considerations   <\/td>\n<\/tr>\n<tr>\n<td><b>31<b><\/td>\n<td>Annex C (normative)  Audit time   <\/td>\n<\/tr>\n<tr>\n<td><b>37<b><\/td>\n<td>Annex D (informative)  Methods for audit time calculations   <\/td>\n<\/tr>\n<tr>\n<td><b>41<b><\/td>\n<td>Annex E (informative)  Guidance for review of implemented ISO\/IEC 27001:2022, Annex A controls   <\/td>\n<\/tr>\n<tr>\n<td><b>55<b><\/td>\n<td>Bibliography   <\/td>\n<\/tr>\n<\/table>\n","protected":false},"excerpt":{"rendered":"<p><b>Information security, cybersecurity and privacy protection. Requirements for bodies providing audit and certification of information security management systems &#8211; General<\/b><\/p>\n<table class=\"shortdes-table\" style=\"width: 100%\" border=\"0\" cellspacing=\"0\" cellpadding=\"0\">\n<tbody>\n<tr>\n<td>Published By<\/td>\n<td>Publication Date<\/td>\n<td>Number of Pages<\/td>\n<\/tr>\n<tr>\n<td><a href=\"https:\/\/pdfstandards.shop\/product-category\/publishers\/bsi\/\"><b>BSI<\/b><\/a><\/td>\n<td>2024<\/td>\n<td>56<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"featured_media":453678,"template":"","meta":{"rank_math_lock_modified_date":false,"ep_exclude_from_search":false},"product_cat":[96,2641],"product_tag":[],"class_list":{"0":"post-453669","1":"product","2":"type-product","3":"status-publish","4":"has-post-thumbnail","6":"product_cat-03-120-20","7":"product_cat-bsi","9":"first","10":"instock","11":"sold-individually","12":"shipping-taxable","13":"purchasable","14":"product-type-simple"},"_links":{"self":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product\/453669","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product"}],"about":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/types\/product"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media\/453678"}],"wp:attachment":[{"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/media?parent=453669"}],"wp:term":[{"taxonomy":"product_cat","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_cat?post=453669"},{"taxonomy":"product_tag","embeddable":true,"href":"https:\/\/pdfstandards.shop\/wp-json\/wp\/v2\/product_tag?post=453669"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}