GB/T 25067-2016 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems
This standard specifies requirements and provides guidelines for information security management system (hereinafter referred to as ISMS) audit and certification organizations, as a supplement to the relevant requirements in ISO/IEC 17021:2011 and GB/T 22080-2008. The main purpose of this standard is to provide support for the accreditation of certification bodies offering ISMS certification. Any organization providing 1SMS certification needs to demonstrate that it meets the requirements of this standard in terms of competence and reliability. Guidance to this standard provides further explanation for these requirements.
GB/T 22080-2008 Information technology.Security techniques.Information security management systems.Requirements
ISO/IEC 17021:2011 Conformity assessment - Requirements for bodies providing audit and certification of management systems
GB/T 25067-2016 history
2020GB/T 25067-2020 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems
2016GB/T 25067-2016 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems
2010GB/T 25067-2010 Information technology.Security techniques.Requirements for bodies providing audit and certification of information security management system