• Search
  • DS/ISO/IEC 27009:2020

DS/ISO/IEC 27009:2020

Information security, cybersecurity and privacy protection – Sector-specific application of ISO/IEC 27001 – Requirements


Status:
Current
Type:
Standard
Language:
English
Subject:
Price from:
€ 60.97

Scope

This document specifies the requirements for creating sector-specific standards that extend ISO/IEC 27001, and complement or amend ISO/IEC 27002 to support a specific sector (domain, application area or market).
This document explains how to:
— include requirements in addition to those in ISO/IEC 27001,
— refine or interpret any of the ISO/IEC 27001 requirements,
— include controls in addition to those of ISO/IEC 27001:2013, Annex A and ISO/IEC 27002,
— modify any of the controls of ISO/IEC 27001:2013, Annex A and ISO/IEC 27002,
— add guidance to or modify the guidance of ISO/IEC 27002.
This document specifies that additional or refined requirements do not invalidate the requirements in ISO/IEC 27001.
This document is applicable to those involved in producing sector-specific standards.


Number of pages: 26

Published: 2020-04-29

Date of approval: 2020-04-27

International relationships : ISO/IEC 27009:2020 IDT

ICS: 35.030 - IT Security

Item number: M335067


Committees

Committee

  • ISO/IEC/JTC 1/SC 27
  • ISO/IEC/JTC 1/SC 27/WG 1

Danish committee

DS/S-441