ISO/IEC INTERNATIONAL STANDARD 27009 Second edition 2020-04 Information security, cybersecurity and privacy protection Sector- specific application of IS0/IEC 27001 - Requirements Sécurite de I'information, cybersécurite et protection des données personnelles -Application de I'IS0/IEC 27001 a un secteur spécifique Exigences Reference number IS0/IEC 27009:2020(E) @IS0/IEC 2020 ut license from IHS Not for Resale, 05/07/2020 17:58:13 MDT IS0/IEC27009:2020(E) COPYRIGHTPROTECTEDDOCUMENT IS0/IEC2020 All rights reserved. Unless otherwise specified, or required in the context of its implementation, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either IsO at the address below or Iso's member body in the country of the requester. ISO copyright office CP401·Ch.deBlandonnet8 CH-1214 Vernier, Geneva Phone:+4122 749 0111 Fax: +41 22 749 09 47 Email: copyright@iso.org Website: www.iso.org Published in Switzerland @ IS0/IEC 2020 - All rights reserved Not for Resale,05//2020175813MD IS0/IEC 27009:2020(E) Contents Page Foreword ..iv 1 Scope 1 2 Normative references .1 3 Terms and definitions 4 Overview of this document. .2 4.1 General. .2 4.2 Structure of this document 3 4.3 ExpandingIS0/IEC27001requirementsorIS0/IEC27002controls 3 5 Addition to, refinement or interpretation of IS0/IEC 27001 requirements .3 5.1 General .3 5.2 Addition of reguirements to IS0/IEC 27001 4 5.3 Refinement of requirements in IS0/IEC 27001 .4 5.4 Interpretation of requirements in IS0/IEC 27001 .4 6 Additional or modified IS0/IEC 27002 guidance .4 6.1 General .4 6.2 Additional guidance. .5 6.3 Modified guidance. .5 Annex A (normative) Template for developing sector-specific standards related to IS0/IEC 27001 and optionally IS0/IEC 27002 6 Annex B (normative) Template for developing sector-specific standards related to IS0/IEC 27002 9 Annex C (informative) Explanation of the advantages and disadvantages of numbering approaches used within Annex B ..16 Bibliography ..18 iii cense from IHS Not for Resale, 05/07/2020 17:58:13 MDT

.pdf文档 ISO IEC 27009-2020 Information security, cybersecurity and privacy protection Sector specific application of ISO IEC 27001 requirements

文档预览
中文文档 24 页 50 下载 1000 浏览 0 评论 309 收藏 3.0分
温馨提示:本文档共24页,可预览 3 页,如浏览全部内容或当前文档出现乱码,可开通会员下载原始文档
ISO IEC 27009-2020 Information security, cybersecurity and privacy protection Sector specific application of ISO IEC 27001 requirements 第 1 页 ISO IEC 27009-2020 Information security, cybersecurity and privacy protection Sector specific application of ISO IEC 27001 requirements 第 2 页 ISO IEC 27009-2020 Information security, cybersecurity and privacy protection Sector specific application of ISO IEC 27001 requirements 第 3 页
下载文档到电脑,方便使用
本文档由 人生无常 于 2024-10-26 03:39:13上传分享
站内资源均来自网友分享或网络收集整理,若无意中侵犯到您的权利,敬请联系我们微信(点击查看客服),我们将及时删除相关资源。