标准摘要
[中文适用范围]: 除了 ISO/IEC 17021-1 中包含的要求外,本文件还规定了要求并为提供信息安全管理体系 (ISMS) 审核和认证的机构提供了指导。本文件中包含的要求由提供 ISMS 认证的机构在能力和可靠性方面得到证明。本文件中包含的指南为提供 ISMS 认证的机构提供了对这些要求的附加解释。注:本文件可用作认证、同行评估或其他审核过程的标准文件。 [外文原描述]: This document specifies requirements and provides guidance for bodies providing audit and certification of an information security management system (ISMS), in addition to the requirements contained within ISO/IEC 17021-1. The requirements contained in this document are demonstrated in terms of competence and reliability by bodies providing ISMS certification. The guidance contained in this document provides additional interpretation of these requirements for bodies providing ISMS certification. NOTE This document can be used as a criteria document for accreditation, peer assessment or other audit processes.
英文名称Information security, cybersecurity and privacy protection - Requirements for bodies providing audit and certification of information security management systems - Part 1: General