ISO/IEC 27006
E514701
ISO/IEC 27006 is an international standard that specifies requirements for bodies providing audit and certification of information security management systems.
All labels observed (1)
| Label | Occurrences |
|---|---|
| ISO/IEC 27006 canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T5362762 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: ISO/IEC 27006 Context triple: [ISO/IEC 27000 family, includesStandard, ISO/IEC 27006]
-
A.
ISO/IEC 27005
ISO/IEC 27005 is an international standard that provides guidelines for information security risk management within an organization’s overall information security management system.
-
B.
ISO/IEC 27003
ISO/IEC 27003 is an international standard that provides guidance on implementing and managing an information security management system (ISMS) in accordance with ISO/IEC 27001.
-
C.
ISO/IEC 27002
ISO/IEC 27002 is an international standard that provides best-practice guidelines and controls for information security management.
-
D.
ISO/IEC 27000 family
The ISO/IEC 27000 family is an international set of standards that provides best-practice frameworks and requirements for establishing, implementing, maintaining, and continually improving information security management systems.
-
E.
ISO 27001
ISO 27001 is an internationally recognized standard that specifies requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS).
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: ISO/IEC 27006 Target entity description: ISO/IEC 27006 is an international standard that specifies requirements for bodies providing audit and certification of information security management systems.
-
A.
ISO/IEC 27005
ISO/IEC 27005 is an international standard that provides guidelines for information security risk management within an organization’s overall information security management system.
-
B.
ISO/IEC 27003
ISO/IEC 27003 is an international standard that provides guidance on implementing and managing an information security management system (ISMS) in accordance with ISO/IEC 27001.
-
C.
ISO/IEC 27002
ISO/IEC 27002 is an international standard that provides best-practice guidelines and controls for information security management.
-
D.
ISO/IEC 27000 family
The ISO/IEC 27000 family is an international set of standards that provides best-practice frameworks and requirements for establishing, implementing, maintaining, and continually improving information security management systems.
-
E.
ISO 27001
ISO 27001 is an internationally recognized standard that specifies requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS).
- F. None of above. chosen
Statements (45)
| Predicate | Object |
|---|---|
| instanceOf |
Conformity assessment standard
ⓘ
IEC standard ⓘ ISO standard ⓘ International standard ⓘ |
| aimsTo |
harmonize ISMS certification practices internationally
ⓘ
support mutual recognition of ISMS certificates ⓘ |
| appliesTo |
bodies providing audit of information security management systems
ⓘ
bodies providing certification of information security management systems ⓘ certification bodies ⓘ |
| covers |
requirements for audit planning for ISMS
ⓘ
requirements for audit reporting for ISMS ⓘ requirements for audit team competence for ISMS ⓘ requirements for surveillance and recertification of ISMS ⓘ |
| defines |
requirements for audit processes for ISMS certification
ⓘ
requirements for audit time determination for ISMS ⓘ requirements for competence of ISMS auditors ⓘ requirements for competence of ISMS certification bodies ⓘ requirements for competence of personnel involved in ISMS certification ⓘ requirements for confidentiality in ISMS certification ⓘ requirements for handling audit evidence in ISMS certification ⓘ requirements for impartiality of certification bodies ⓘ requirements for management of ISMS certification schemes ⓘ requirements for sampling in ISMS audits ⓘ |
| focusesOn |
audit of information security management systems
ⓘ
certification of information security management systems ⓘ |
| hasPurpose |
to ensure consistency of ISMS certification
ⓘ
to ensure reliability of ISMS certification ⓘ to promote confidence in ISMS certificates ⓘ |
| intendedAudience |
ISMS auditors
ⓘ
ISMS certification bodies ⓘ accreditation bodies for ISMS ⓘ |
| isConsistentWith | ISO/IEC 17021 series NERFINISHED ⓘ |
| language | English ⓘ |
| partOf | ISO/IEC 27000 family NERFINISHED ⓘ |
| publishedBy |
International Electrotechnical Commission
NERFINISHED
ⓘ
International Organization for Standardization ⓘ |
| relatedTo | ISO/IEC 27001 NERFINISHED ⓘ |
| subjectArea |
conformity assessment
ⓘ
information security ⓘ management systems certification ⓘ |
| supportsImplementationOf | ISO/IEC 27001 certification ⓘ |
| usedBy |
accreditation bodies
ⓘ
certification bodies ⓘ |
| usedFor |
accreditation of ISMS certification bodies
ⓘ
assessment of ISMS certification bodies ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: ISO/IEC 27006 Description of subject: ISO/IEC 27006 is an international standard that specifies requirements for bodies providing audit and certification of information security management systems.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.