ISO IEC 27007:2011 pdfダウンロード。Information technology — Security techniques — Guidelines for information security management systems auditing 1 Scope This lnternational Standard provides guidance on managing an information security management systemISMS) audit programme, on conducting the audits, and on the competence of ISMS auditors, in addition tothe guidance contained in ISO 19011. This International Standard is applicable to those needing to understand or conduct internal or external audits of anISMS or to manage an ISMS audit programme. 2 Normative references The following referenced documents are indispensable for the application of this document. For datedreferences, only the edition cited applies. For undated...