GB/T 25067-2016 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems

Standard No.: GB/T 25067-2016
Language: Chinese
Release Date: 2016
Published By: General Administration of Quality Supervision, Inspection and Quarantine of the People‘s Republic of China
Replace By: GB/T 25067-2020
Lastest: GB/T 25067-2020
Replace: GB/T 25067-2010

Scope: This standard specifies requirements and provides guidelines for information security management system (hereinafter referred to as ISMS) audit and certification organizations, as a supplement to the relevant requirements in ISO/IEC 17021:2011 and GB/T 22080-2008. The main purpose of this standard is to provide support for the accreditation of certification bodies offering ISMS certification. Any organization providing 1SMS certification needs to demonstrate that it meets the requirements of this standard in terms of competence and reliability. Guidance to this standard provides further explanation for these requirements.

GB/T 19011-2013 Guidelines for auditing management systems
GB/T 22080-2008 Information technology.Security techniques.Information security management systems.Requirements
ISO/IEC 17021:2011 Conformity assessment - Requirements for bodies providing audit and certification of management systems

2020 GB/T 25067-2020 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems
2016 GB/T 25067-2016 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems
2010 GB/T 25067-2010 Information technology.Security techniques.Requirements for bodies providing audit and certification of information security management system

GB/T 25067-2016Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems