ISO/IEC-27009 › Information technology - Security techniques - Sector-specific application of ISO/IEC 27001 - Requirements
The following bibliographic material is provided to assist you with your purchasing decision:
ISO/IEC 27009:2016 defines the requirements for the use of ISO/IEC 27001 in any specific sector (field, application area or market sector). It explains how to include requirements additional to those in ISO/IEC 27001, how to refine any of the ISO/IEC 27001 requirements, and how to include controls or control sets in addition to ISO/IEC 27001:2013, Annex A.
It ensures that additional or refined requirements are not in conflict with the requirements in ISO/IEC 27001.
It is applicable to those involved in producing sector-specific standards that relate to ISO/IEC 27001.
To find similar documents by classification:
35.030 (IT Security Including encryption)
This document comes with our free Notification Service, good for the life of the document.
This document is available in either Paper or PDF format.
Document Number
ISO/IEC 27009:2016
Revision Level
1ST EDITION
Status
Current
Publication Date
June 15, 2016
Committee Number
ISO/IEC JTC 1/SC 27