IS/ISO/IEC 27036 : Part 2 : 2022 Cybersecurity - Supplier Relationships - Part 2 Requirements
NATIONAL FOREWORD
This Indian Standard (Part 2) which is identical to ISO/IEC 27036-2 : 2022 'Cybersecurity - Supplier relationships - Part 2: Requirements' issued by the International Organization for Standardization (ISO) and International Electrotechnical Commission (IEC) jointly was adopted by the Bureau of Indian Standards on the recommendations of the Information Systems Security and Privacy Sectional Committee and approval of the Electronics and Information Technology Division Council.
This Indian Standard is published in several parts. The other parts in this series are:
Part 1 Overview and concepts (First Revision)
Part 3 Guidelines for hardware, software, and services supply chain security
Part 4 Guidelines for security of cloud services
The main changes in this edition are as follows:
The structure and content have been aligned with the most recent version of ISO/IEC 15288 The text of ISO/IEC standard has been approved as suitable for publication as an Indian Standard without deviations. Certain conventions are however not identical to those used in Indian Standards. Attention is particularly drawn to the following:
a) Wherever the words 'International Standard' appears referring to this standard, they should be read as 'Indian Standard'; and
b) Comma (,) has been used as a decimal marker while in Indian Standards, the current Practice is to use a point (.) as the decimal marker.