Information technology - Security techniques - Information security for supplier relationships - Part 2: Requirements
ISO/IEC 27036-2:2014 specifies fundamental information security requirements for defining, implementing, operating, monitoring, reviewing, maintaining and improving supplier and acquirer relationships.
These requirements cover any procurement and supply of products and services, such as manufacturing or assembly, business process procurement, software and hardware components, knowledge process procurement, Build-Operate-Transfer and cloud computing services.
These requirements are intended to be applicable to all organizations, regardless of type, size and nature.
To meet these requirements, an organization should have already internally implemented a number of foundational processes, or be actively planning to do so. These processes include, but are not limited to, the following: governance, business management, risk management, operational and human resources management, and information security.
Please first log in with a verified email before subscribing to alerts.
Your Alert Profile lists the documents that will be monitored. If the document is revised or amended, you will be notified by email. You may delete a document from your Alert Profile at any time. To add a document to your Profile Alert, search for the document and click “alert me”.
Your Alert Profile lists the documents that will be monitored. If the document is revised or amended, you will be notified by email. You may delete a document from your Alert Profile at any time. To add a document to your Profile Alert, search for the document and click “alert me”.
Add to Alert
Already Subscribed to this document.
Your Alert Profile lists the documents that will be monitored. If the document is revised or amended, you will be notified by email. You may delete a document from your Alert Profile at any time. To add a document to your Profile Alert, search for the document and click “alert me”.
PDF Document format
Documents sold on the ANSI Webstore are in electronic Adobe Acrobat PDF format, however some ISO and IEC standards are available from Amazon in hard copy format.
DRM protected documents
Some PDF files are protected by Digital Rights Management (DRM) at the request of the copyright holder. You can download and open this file to your own computer but DRM prevents opening this file on another computer, including a networked server. Some copyright holders may impose other restrictions that limit document printing and copy/paste of documents.
Non printable documents
Those documents cannot be printed at the request of the copyright holder.
Content Provider International Organization for Standardization [iso]
We have no amendments or corrections for this standard.
Are the documents at the ANSI Webstore in electronic Adobe Acrobat PDF format only?
Documents sold on the ANSI Standards Store are in electronic Adobe Acrobat PDF format, however some ISO and IEC standards are available from Amazon in hard copy format.
Standard Subscriptions
This standard is also available to be included in Standards Subscriptions. Standards Subscriptions from ANSI provides a money-saving, multi-user solution for accessing standards.
Subscription pricing is determined by: the specific standard(s) or collections of standards, the number of locations accessing the standards, and the number of employees that need access.
As the voice of the U.S. standards and conformity assessment system, the American National Standards Institute (ANSI) empowers its members and constituents to strengthen the U.S.
marketplace position in the global economy while helping to assure the safety and health of consumers and the protection of the environment.
