This document is an introductory part of ISO/IEC 27036. It provides an overview of the guidance intended to assist organizations in securing their information and information systems within the context of supplier relationships.

Overview and concepts o is an introductory part of ISO/IEC 27036. It provides an overview f the guidance organizations relationships. This document in securing addresses introduces perspectives information concepts that of information acquirers Normative references

2021年11月30日 · ISO/IEC 27036《信息技术 安全技术 供应商关系的信息安全》系列标准基于过程模型建立了采购过程（主要是供应商选择和采购外包）和供应过程（主要是生产交付），并在信息安全管理体系基础上增加供应链的管理制度和措施。

In the field ISO/IEC JTC 1. of information technology, non-governmental, ISO and IEC in liaison in established of mutual interest. Other IEC, technical also take committee, international part in the International The main task Standards are drafted in accordance with the rules given in the ISO/IEC Directives, Part 2.

This document specifies fundamental information security requirements for defining, implementing, operating, monitoring, reviewing, maintaining and improving supplier and acquirer relationships. These requirements cover any procurement and supply of products and services, such as manufacturing or assembly, business process procurement, software and hardware components, knowledge process ...

2021年9月9日 · ISO/IEC 27036-2:2022网络安全.供应商关系.第2部分:要求本文件规定了定义、实施、操作、监控、审查、维护和改善供应商和收单机构关系的基本信息安全要求。

2021年9月9日 · 本文件是ISO/IEC 27036的介绍部分。它概述了旨在帮助组织在供应商关系背景下保护其信息和信息系统的指南。它还介绍了ISO/IEC 27036其他部分中详细描述的概念。本文件阐述了收购方和供应商的观点。

ISO/IEC 27036 is a multi-part standard offering guidance on the management of information risks involved in the acquisition of ICT products (goods and services) from suppliers.

2021年9月9日 · This document is an introductory part of ISO/IEC 27036. It provides an overview of the guidance intended to assist organizations in securing their information and information systems within the context of supplier relationships. It also introduces concepts that are described in detail in the other parts of ISO/IEC 27036. This document addresses perspectives of both acquirers and suppliers.

ISO/IEC 27036-1 was prepared by Joint Technical Committee ISO/IEC JTC 1, Information technology, Subcommittee SC 27, Information security, cybersecurity, and privacy protection.