ISO/IEC 27013:2021 信息技术 安全技术 ISO/IEC 27001和ISO/IEC 20000-1的一体化实施指南

标准编号：ISO/IEC 27013:2021

中文名称：信息技术 安全技术 ISO/IEC 27001和ISO/IEC 20000-1的一体化实施指南

英文名称：Information security, cybersecurity and privacy protection — Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1

发布日期：2021-11

标准范围

本文件为以下组织提供了综合实施ISO/IEC 27001和ISO/IEC 20000-1的指南:a)在已经实施ISO/IEC 20000-1时实施ISO/IEC27001，反之亦然；b)同时实施ISO/IEC 27001和ISO/IEC 20000-1；或c)整合基于ISO/IEC27001和ISO/IEC 20000-1的现有管理体系。本文件专门关注ISO/IEC 27001中规定的信息安全管理系统（ISMS）和ISO/IEC 20000-1中规定的服务管理系统（SMS）的集成实施。

This document gives guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1 for organizations intending to:
a) implement ISO/IEC27001 when ISO/IEC 20000-1 is already implemented, or vice versa;
b) implement both ISO/IEC27001 and ISO/IEC 20000-1 together; or
c) integrate existing management systems based on ISO/IEC27001 and ISO/IEC 20000-1.
This document focuses exclusively on the integrated implementation of an information security management system (ISMS) as specified in ISO/IEC 27001 and a service management system (SMS) as specified in ISO/IEC 20000-1.

标准预览图