UNLIMITED FREE
ACCESS TO THE WORLD'S BEST IDEAS

SUBMIT
Already a GlobalSpec user? Log in.

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

Customize Your GlobalSpec Experience

Select Your Free Newsletters

Industry Newsletters

Select Your Free Product Alerts

Finish!
Privacy Policy

This is embarrasing...

An error occurred while processing the form. Please try again in a few minutes.

ISO/IEC 27036-1

Cybersecurity — Supplier relationships — Part 1: Overview and concepts

active, Most Current
Organization: ISO
Publication Date: 1 September 2021
Status: active
Page Count: 20
ICS Code (IT Security): 35.030
scope:

This document is an introductory part of ISO/IEC 27036. It provides an overview of the guidance intended to assist organizations in securing their information and information systems within the context of supplier relationships. It also introduces concepts that are described in detail in the other parts of ISO/IEC 27036. This document addresses perspectives of both acquirers and suppliers.

Document History

ISO/IEC 27036-1
September 1, 2021
Cybersecurity — Supplier relationships — Part 1: Overview and concepts
This document is an introductory part of ISO/IEC 27036. It provides an overview of the guidance intended to assist organizations in securing their information and information systems within the...
ISO/IEC 27036-1
April 1, 2014
Information technology - Security techniques - Information security for supplier relationships - Part 1: Overview and concepts
This part of ISO/IEC 27036 is an introductory part of ISO/IEC 27036. It provides an overview of the guidance intended to assist organizations in securing their information and information systems...

References

This document references:
ISO/IEC/IEEE 15288 - Systems and software engineering — System life cycle processes
Published by ISO on May 1, 2023
This document establishes a common framework of process descriptions for describing the life cycle of systems created by humans, defining a set of processes and associated terminology from an...
This document references:
ISO/IEC 27036-3 - Information technology - Security techniques - Information security for supplier relationships - Part 3: Guidelines for information and communication technology supply chain security
Published by ISO on November 15, 2013
This part of ISO/IEC 27036 provides product and service acquirers and suppliers in ICT supply chain with guidance on: a) gaining visibility into and managing the information security risks caused by...
This document references:
ISO/IEC 27036-2 - Cybersecurity — Supplier relationships — Part 2: Requirements
Published by ISO on June 1, 2022
This document specifies fundamental information security requirements for defining, implementing, operating, monitoring, reviewing, maintaining and improving supplier and acquirer relationships....
This document references:
ISO/IEC/IEEE 15288 - Systems and software engineering — System life cycle processes
Published by ISO on May 1, 2023
This document establishes a common framework of process descriptions for describing the life cycle of systems created by humans, defining a set of processes and associated terminology from an...
This document references:
ISO/IEC 27036-4 - Information technology - Security techniques - Information security for supplier relationships - Part 4: Guidelines for security of cloud services
Published by ISO on October 1, 2016
This document provides cloud service customers and cloud service providers with guidance on a) gaining visibility into the information security risks associated with the use of cloud services and...
This document references:
ISO/IEC 27036-3 - Information technology - Security techniques - Information security for supplier relationships - Part 3: Guidelines for information and communication technology supply chain security
Published by ISO on November 15, 2013
This part of ISO/IEC 27036 provides product and service acquirers and suppliers in ICT supply chain with guidance on: a) gaining visibility into and managing the information security risks caused by...
This document references:
ISO/IEC 27036-2 - Cybersecurity — Supplier relationships — Part 2: Requirements
Published by ISO on June 1, 2022
This document specifies fundamental information security requirements for defining, implementing, operating, monitoring, reviewing, maintaining and improving supplier and acquirer relationships....
This document is referenced by:
NEN-ISO/IEC 27036-1 - Cybersecurity - Supplier relationships - Part 1: Overview and concepts
Published by NEN on September 1, 2021
This document is an introductory part of ISO/IEC 27036. It provides an overview of the guidance intended to assist organizations in securing their information and information systems within the...
This document is referenced by:
BS ISO/IEC 27034-2 - Information technology - Security techniques - Application security Part 2: Organization normative framework
Published by BSI on August 31, 2015
A description is not available for this item.
This document is referenced by:
BS ISO/IEC 27036-4 - Information technology — Security techniques — Information security for supplier relationships Part 4: Guidelines for security of cloud services
Published by BSI on October 31, 2016
A description is not available for this item.
This document is referenced by:
UNI ISO/IEC/IEEE 12207 - Systems and software engineering Software life cycle processes
Published by CEI on October 1, 2021
Overview This document establishes a common framework for software life cycle processes, with well‐defined terminology, that can be referenced by the software industry. It contains processes,...
This document is referenced by:
BS ISO/IEC 27400 - Cybersecurity - IoT security and privacy - Guidelines
Published by BSI on October 31, 2022
A description is not available for this item.
View Less
View All
Advertisement