GB/T 25067-2010 Information technology.Security techniques.Requirements for bodies providing audit and certification of information security management system

Standard No.: GB/T 25067-2010
Language: Chinese
Release Date: 2010
Published By: General Administration of Quality Supervision, Inspection and Quarantine of the People‘s Republic of China
Replace By: GB/T 25067-2016
Lastest: GB/T 25067-2020

Scope: This standard sets out requirements and provides guidelines for organizations implementing information security management system audit and certification, as a supplement to the requirements of GB/T 27021-2007 and GB/T 22080-2008. The main purpose of developing this standard is to provide support for the accreditation of certification bodies implementing ISMS certification. Any organization providing ISMS certification needs to demonstrate that it meets the requirements of this standard in terms of competence and reliability. The guiding clauses of this standard provide further clarification on these requirements.

GB/T 19011 Guidelines for auditing management systems*， 2021-08-20 Update
GB/T 22080-2008 Information technology.Security techniques.Information security management systems.Requirements
GB/T 27021-2007 Conformity assessment.Requirements for bodies providing audit and certification of management systems

2020 GB/T 25067-2020 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems
2016 GB/T 25067-2016 Information technology—Security techniques—Requirements for bodies providing audit and certification of information security management systems
2010 GB/T 25067-2010 Information technology.Security techniques.Requirements for bodies providing audit and certification of information security management system

GB/T 25067-2010Information technology.Security techniques.Requirements for bodies providing audit and certification of information security management system