Cookies
We need your consent to use the individual data so that you can see information about your interests, among other things. Click "OK" to give your consent.
ISO/IEC 27036-3-ed.2.0
Cybersecurity - Supplier relationships - Part 3: Guidelines for hardware, software, and services supply chain security
Translate name
STANDARD published on 13.6.2023
The information about the standard:
Designation standards: ISO/IEC 27036-3-ed.2.0
Publication date standards: 13.6.2023
SKU: NS-1148133
The number of pages: 34
Approximate weight : 102 g (0.22 lbs)
Country: International technical standard
Category: Technical standards ISO
The category - similar standards:
Annotation of standard text ISO/IEC 27036-3-ed.2.0 :
This document provides guidance for product and service acquirers, as well as suppliers of hardware, software and services, regarding:
a) gaining visibility into and managing the information security risks caused by physically dispersed and multi-layered hardware, software, and services supply chains;
b) responding to risks stemming from this physically dispersed and multi-layered hardware, software, and services supply chain that can have an information security impact on the organizations using these products and services;
c) integrating information security processes and practices into the system and software life cycle processes, as described in ISO/IEC/IEEE 15288 and ISO/IEC/IEEE 12207, while supporting information security controls, as described in ISO/IEC 27002.
This document does not include business continuity management/resiliency issues involved with the hardware, software, and services supply chain. ISO/IEC 27031 addresses information and communication technology readiness for business continuity.
We recommend:
Updating of laws
Do you want to be sure about the validity of used regulations?
We offer you a solution so that you could use valid and updated legislative regulations.
Would you like to get more information? Look at this page.
