摘要
介绍了信息安全管理体系(ISMS)审核指南的国家标准编制情况,以及国际标准提案的发展,阐述了国际标准提案的内容。ISMS审核指南国际提案遵循ISO 19011的文本结构及相关内容,根据ISMS的特点,为审核方案的管理、ISMS内部或外部审核的实施,以及审核员的能力和评价提供指南。
This paper introduces the developing process of guidelines for information security management system(ISMS) auditing from national standard to international standard proposal, and also the contents of the proposal. The proposal follows the structure of ISO 19011 and adopt its most content. According to the characteristic of lSMS, the proposal provides guidance on the management of audit programmes, the conduct of internal or external audits of lSMSs, as well as on the competence and evaluation of auditors
出处
《信息技术与标准化》
2009年第4期32-34,共3页
Information Technology & Standardization
关键词
ISMS审核
国家标准
国际标准提案
ISMS auditing
national standard
international standard proposal