ISO/IEC 27036
E518124
ISO/IEC 27036 is an international information security standard that provides guidelines for managing information security risks in supplier and third-party relationships.
All labels observed (1)
| Label | Occurrences |
|---|---|
| ISO/IEC 27036 canonical | 1 |
How this entity was disambiguated
This entity first appeared as the object of triple T5362778 — resolving that mention is where its identity was fixed. The disambiguator weighed these candidate entities and picked the highlighted one (or “None”, minting a new entity). This is how homonymy is resolved: the same surface form can point to different entities.
Target entity: ISO/IEC 27036 Context triple: [ISO/IEC 27000 family, includesStandard, ISO/IEC 27036]
-
A.
ISO/IEC 27034
ISO/IEC 27034 is an international standard that provides guidelines for integrating security into application development and management as part of an organization’s overall information security framework.
-
B.
ISO/IEC 27032
ISO/IEC 27032 is an international standard that provides guidelines for cybersecurity, focusing on protecting information and systems in cyberspace and enhancing cooperation among stakeholders.
-
C.
ISO/IEC 27033
ISO/IEC 27033 is an international standard that provides detailed guidance on the design, implementation, and management of network security within an information security management framework.
-
D.
ISO/IEC 27035
ISO/IEC 27035 is an international standard that provides guidelines and best practices for managing and responding to information security incidents within organizations.
-
E.
ISO/IEC 27013
ISO/IEC 27013 is an international standard that provides guidance on the integrated implementation of information security management (ISO/IEC 27001) and IT service management (ISO/IEC 20000-1).
- F. None of above. chosen
- G. Unsure - the case is ambiguous/there is not enough information to decide.
Target entity: ISO/IEC 27036 Target entity description: ISO/IEC 27036 is an international information security standard that provides guidelines for managing information security risks in supplier and third-party relationships.
-
A.
ISO/IEC 27034
ISO/IEC 27034 is an international standard that provides guidelines for integrating security into application development and management as part of an organization’s overall information security framework.
-
B.
ISO/IEC 27032
ISO/IEC 27032 is an international standard that provides guidelines for cybersecurity, focusing on protecting information and systems in cyberspace and enhancing cooperation among stakeholders.
-
C.
ISO/IEC 27033
ISO/IEC 27033 is an international standard that provides detailed guidance on the design, implementation, and management of network security within an information security management framework.
-
D.
ISO/IEC 27035
ISO/IEC 27035 is an international standard that provides guidelines and best practices for managing and responding to information security incidents within organizations.
-
E.
ISO/IEC 27013
ISO/IEC 27013 is an international standard that provides guidance on the integrated implementation of information security management (ISO/IEC 27001) and IT service management (ISO/IEC 20000-1).
- F. None of above. chosen
Statements (37)
| Predicate | Object |
|---|---|
| instanceOf |
ISO/IEC 27000-series standard
ⓘ
information security standard ⓘ international standard ⓘ |
| addresses |
ICT supply chain security
ⓘ
cloud service supply chain security ⓘ information security controls in supplier relationships ⓘ information security requirements in supplier agreements ⓘ risk treatment for supplier-related information security risks ⓘ |
| aimsTo |
protect organizational information assets in supplier relationships
ⓘ
reduce information security risks arising from suppliers and third parties ⓘ |
| appliesTo |
organizations using suppliers
ⓘ
organizations using third-party service providers ⓘ |
| field |
information security
ⓘ
supplier relationship management ⓘ third-party risk management ⓘ |
| focusesOn |
information security risks in supplier relationships
ⓘ
information security risks in third-party relationships ⓘ |
| hasPart |
ISO/IEC 27036-1
NERFINISHED
ⓘ
ISO/IEC 27036-2 NERFINISHED ⓘ ISO/IEC 27036-3 NERFINISHED ⓘ ISO/IEC 27036-4 NERFINISHED ⓘ |
| language | English ⓘ |
| partOf | ISO/IEC 27036 NERFINISHED ⓘ |
| partOfSeries | ISO/IEC 27000 NERFINISHED ⓘ |
| provides |
guidelines for managing information security risks in supplier relationships
ⓘ
guidelines for managing information security risks in third-party relationships ⓘ |
| publisher |
International Electrotechnical Commission
NERFINISHED
ⓘ
International Organization for Standardization NERFINISHED ⓘ |
| relatedTo |
ISO/IEC 27001
NERFINISHED
ⓘ
ISO/IEC 27002 NERFINISHED ⓘ ISO/IEC 27005 NERFINISHED ⓘ |
| standardFamily | ISO/IEC 27000 family of information security standards NERFINISHED ⓘ |
| subjectOf | information security for supplier relationships ⓘ |
| title |
Information security for supplier relationships – Part 1: Overview and concepts
NERFINISHED
ⓘ
Information security for supplier relationships – Part 2: Requirements ⓘ Information security for supplier relationships – Part 3: Guidelines for information and communication technology supply chain security NERFINISHED ⓘ Information security for supplier relationships – Part 4: Guidelines for security of cloud services NERFINISHED ⓘ |
How these facts were elicited
The pipeline generated the facts above by prompting gpt-5.1 with this entity's name + description and the instruction below.
You are a knowledge base construction expert. Given a subject entity and a description of it, return factual statements that you know for the subject as a JSON list of dictionaries(triples), where keys must be "subject", "predicate" and "object". The number of facts may be very high, between 25 to 50 or more, for very popular subjects. For less popular subjects, the number of facts can be very low, like 5 or 10. # Requirements - If you don't know the subject at all, return an empty list. - If the subject is not a named entity, return an empty list. - Include at least one triple where predicate is "instanceOf". - Do not get too wordy. - Separate several objects into multiple triples with one object.
Subject: ISO/IEC 27036 Description of subject: ISO/IEC 27036 is an international information security standard that provides guidelines for managing information security risks in supplier and third-party relationships.
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.