В данном руководстве используются ссылки на следующие стандарты:
ISO 9001:2015 – Quality management systems — Requirements
ISO 27001:2013/ COR 2:2015- Information technology — Security techniques — Information security management systems — Requirements — Technical Corrigendum 2
ISO/IEC 27002:2013, Information technology — Security Techniques — Code of practice for information security controls
ISO/IEC 27003, Information technology — Security techniques — Information security management system implementation guidance
ISO/IEC 27004, Information technology — Security techniques — Information security management — Measurement
ISO/IEC 27005, Information technology — Security techniques — Information security risk management
ISO 31000:2009, Risk management — Principles and guidelines
ISO/IEC Directives, Part 1, Consolidated ISO Supplement – Procedures specific to ISO, 2012
ISO 19011:2018 – Guidelines for auditing management systems