OtherInternational
ISO/IEC 27006:2024
ISO/IEC 27006 specifies requirements and provides guidance for bodies providing audit and certification of information security management systems (ISMS). It supplements ISO/IEC 17021-1 with ISMS-specific requirements for certification bodies, including auditor competence, audit time, and certification scope determination..
Domains
Annex C-E: Audit Time and Controls
Clause 9: Audit and Certification Process Requirements
Clause 8: Certification Documents and Information Requirements
Clause 7: Process Requirements — Competence
Clause 6: Resource Requirements
Compare ISO/IEC 27006:2024
ISO/IEC 27006:2024 by Industry
ISO/IEC 27006:2024 by Role
Frequently Asked Questions
What is ISO/IEC 27006:2024?
ISO/IEC 27006 specifies requirements and provides guidance for bodies providing audit and certification of information security management systems (ISMS). It supplements ISO/IEC 17021-1 with ISMS-specific requirements for certification bodies, including auditor competence, audit time, and certification scope determination..
How many controls does ISO/IEC 27006:2024 have?
ISO/IEC 27006:2024 contains 38 controls organized across 6 domains.
Where does ISO/IEC 27006:2024 apply?
ISO/IEC 27006:2024 is applicable in International. Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.
What frameworks does ISO/IEC 27006:2024 map to?
ISO/IEC 27006:2024 has control-to-control mappings with 436 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.
How do I get started with ISO/IEC 27006:2024 compliance?
Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.
How ready are you for ISO/IEC 27006:2024?
Answer 25 questions and get a professional readiness report with gap analysis, maturity scores, and prioritised action items. Results in 5 minutes.