Expert Advice Community

Guest

Considering ISO 28000 for outsourcing hosting of their software products

  Quote
Guest
Guest user Created:   Aug 17, 2020 Last commented:   Aug 17, 2020

Considering ISO 28000 for outsourcing hosting of their software products

One of my 27001 clients is asking about whether they need to consider ISO 28000 as they outsource the hosting of their software products.

Do you have any guidance on this?

0 0

Assign topic to the user

Assign

ISO 27001 FOUNDATIONS COURSE

Everything you need to know about ISO 27001.

ISO 27001 FOUNDATIONS COURSE

Everything you need to know about ISO 27001.

Expert
Rhand Leal Aug 17, 2020

ISO 27001 does not require any specific standard to be followed so unless your client has a legal requirement (e.g., law, regulation or contract) demanding the implementation of ISO 28000 (Specification for security management systems for the supply chain), or it considers a good practice worthy to be implemented, there is no need to implement ISO 28000 to fulfill ISO 27001 requirements.

For further information, see:

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Aug 17, 2020

Aug 17, 2020

Suggested Topics

Guest user Created:   Jul 16, 2021 ISO 27001 & 22301
Replies: 1
0 0

Question on ISO 27001

Guest user Created:   Jul 07, 2021 ISO 27001 & 22301
Replies: 1
1 0

ISO Certified Auditor