GB/T 28450-2012
AbolishedInformation security technology - Guidelines for information security management system auditing
信息安全技术 信息安全管理体系审核指南
Application Summary AI generated
This standard provides guidelines for auditing an Information Security Management System (ISMS), covering audit principles, program management, and competence requirements for auditors. It is applied by organizations implementing ISO/IEC 27001-based ISMS in China, particularly during internal audits, certification audits, or supplier assessments to ensure compliance with information security controls. The standard is used across industries such as finance, telecommunications, and government sectors where formal ISMS certification is required.
Related Standards
GB/T 21049-2007
Chinese-sensible code
GB/T 19245-2003
Specification for information interchange of electronic business card
GB/T 16986-2003
Application identifiers for EAN·UCC system
GB/T 19253-2003
Information technology--Notation of format for data element values
GB/T 16829-2003
Information technology--Automatic identification and data capture techniques--Bar code symbology specifications--Interleaved 2 of 5
GB/T 18391.2-2003
Information technology--Specification and standardization of data elements--Part 2: Classification for data elements
GB/T 2261.1-2003
Classification and codesof basic personal information--Part 1: Codes for sexual distinction of human
GB/T 2261.3-2003
Classification and codesof basic personal information--Part 3: Codes for state of health
Transparency note: The application summary and key sentences on this page were automatically generated by AI from the standard's original text. This content has not been human-verified and should not be used for compliance or regulatory purposes. Always refer to the official standard document from the issuing authority.