jQuery Mobile Framework
Search Home >> British Standards >> BS ISO/IEC 27036-3-2013 Information technology. Security techniques. Information security for supplier relationshipsGuidelines for information and communication technology supply chain security

BS ISO/IEC 27036-3-2013 Information technology. Security techniques. Information security for supplier relationshipsGuidelines for information and communication technology supply chain security

Standard Number:  BS ISO/IEC 27036-3-2013
Title:  Information technology. Security techniques. Information security for supplier relationshipsGuidelines for information and communication technology supply chain security
Language:  English
Publication Date:  2013/11/30
Execute Date:  2013/11/30
Adopted International Standard:  ISO/IEC 27036-3-2013
Status:  Current
International Classification for Standards (ICS)INFORMATION TECHNOLOGY. OFFICE MACHINES>>Character sets and information coding
Publisher:  British Standards
Price:  
Number of Pages:30  

Description:Gives product and service acquirers and suppliers in ICT supply chain with guidance on- a) gaining visibility into and managing the information security risks caused by physically dispersed and multi-layered ICT supply chains; b) responding to risks stemming from the global ICT supply chain to ICT products and services that can have an information security impact on the organizations using these products and services. These risks can be related to organizational as well as technical aspects (e.g. insertion of malicious code or presence of the counterfeit information technology (IT) products); and c) integrating information security processes and practices into the system and software lifecycle processes, described in ISO/IEC 15288 and ISO/IEC 12207, while supporting information security controls, described in ISO/IEC 27002.  
Cross References:ISO/IEC 27000, ISO/IEC 27036-1, ISO/IEC 27036-2, ISO/IEC 15288, ISO/IEC 12207, ISO/IEC 15026, ISO/IEC 27001, ISO/IEC 27002, ISO/IEC 27004, ISO/IEC 27005, ISO/IEC 27007, ISO 28001, ISO/IEC 20000-1, SAFECode 2010  
Catalog:Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Structure of this standard
5 Key concepts
6 ICT supply chain security in Lifecycle Processes
Annex A (informative) - Summary of Supply and
Acquisition Processes from ISO/IEC 15288
and ISO/IEC 12207
Annex B (informative) - Clause 6 mapping to
ISO/IEC 27002
Bibliography  
File Format:  PDF(Acrobat Reader) or Word version doc Document
File Size:  578KB
Tile in English:  Information technology. Security techniques. Information security for supplier relationshipsGuidelines for information and communication technology supply chain security

Full Text Information

Related

Top 10

New 10

PC Version