Standard Svensk standard · SS-ISO/IEC 27036-2:2014

Informationsteknik - Säkerhetstekniker - Informationssäkerhet vid leverantörsrelationer - Del 2: Allmänna krav (ISO 27036-2:2014, IDT)

Status: Gällande

Omfattning
This part of ISO/IEC 27036 specifies fundamental information security requirements for defining, implementing, operating, monitoring, reviewing, maintaining and improving supplier and acquirer relationships.These requirements cover any procurement and supply of products and services, such as manufacturing or assembly, business process procurement, software and hardware components, knowledge process procurement, Build-Operate-Transfer and cloud computing services.These requirements are intended to be applicable to all organizations, regardless of type, size and nature.To meet these requirements, an organization should have already internally implemented a number of foundational processes, or be actively planning to do so. These processes include, but are not limited to, the following: governance, business management, risk management, operational and human resources management, and information security.

Ämnesområden

Dokument för administration, handel och industri (01.140.30) Ledningssystem för informationssäkerhet (04.050) Datakommunikationsnät (33.040.40) Informationsteknik Allmänt (35.020) Kodning av information (35.040) Programutveckling och systemdokumentation (35.080)


Produktinformation

Språk: Engelska Svenska

Framtagen av: Säkerhetsåtgärder och tjänster, SIS/TK 318/AG 41

Internationell titel: Information technology - Security techniques - Information security for supplier relationships - Part 2: Requirements (ISO 27036-2:2014, IDT)

Artikelnummer: STD-102917

Utgåva: 1

Fastställd: 2014-09-17

Antal sidor: 44

Finns även på: SS-ISO/IEC 27036-2:2014