03.100.70 - Management systems

SIST EN ISO 50005:2022(Main)

Energy management systems - Guidelines for a phased implementation (ISO 50005:2021)

EN ISO 50005:2022

This document gives guidance for organizations on establishing a phased approach to implement an energy management system (EnMS). This phased approach is intended to support and simplify the implementation of an EnMS for all types of organizations, in particular for small and medium-sized organizations (SMOs).
This document gives guidance on the use of twelve core elements with four levels of maturity for each element to establish, implement, maintain and improve an EnMS that results in energy performance improvement.
It enables the user of this document to implement a phased approach to achieve a level of energy management appropriate to its objectives and to build a strong foundation which can subsequently be extended towards meeting the requirements of ISO 50001:2018. This document is consistent with ISO 50001:2018 but does not cover all of its requirements.

Standard
45 pages
English language
sale 10% off
e-Library read for
1 day
Draft
42 pages
English language
sale 10% off
e-Library read for
1 day

28-Feb-2022
18-May-2022
03.100.70
27.015
I11

SIST EN ISO/IEC 27007:2022(Main)

Information security, cybersecurity and privacy protection - Guidelines for information security management systems auditing (ISO/IEC 27007:2020)

EN ISO/IEC 27007:2022

ISO/IEC 27007 provides guidance on managing an information security management system (ISMS) audit programme, on conducting audits, and on the competence of ISMS auditors, in addition to the guidance contained in ISO 19011:2011.
ISO/IEC 27007 is applicable to those needing to understand or conduct internal or external audits of an ISMS or to manage an ISMS audit programme.

Standard
48 pages
English language
sale 10% off
e-Library read for
1 day
Draft
45 pages
English language
sale 10% off
e-Library read for
1 day

14-Nov-2021
03-Mar-2022
03.100.70
03.120.20
35.030
ITC

Information security, cybersecurity and privacy protection -- Guidance on the integrated implementation of ISO/IEC 27001 and ISO/IEC 20000-1

ISO/IEC 27013:2021(Main)

This document gives guidance on the integrated implementation of ISO/IECÂ 27001 and ISO/IECÂ 20000-1 for organizations intending to: a) implement ISO/IEC27001 when ISO/IECÂ 20000-1 is already implemented, or vice versa; b) implement both ISO/IEC27001 and ISO/IECÂ 20000-1 together; or c) integrate existing management systems based on ISO/IEC27001 and ISO/IECÂ 20000-1. This document focuses exclusively on the integrated implementation of an information security management system (ISMS) as specified in ISO/IECÂ 27001 and a service management system (SMS) as specified in ISO/IECÂ 20000-1.

Standard
60 pages
English language
sale 15% off
Draft
57 pages
English language
sale 15% off

Innovation management -- Tools and methods for strategic intelligence management -- Guidance

ISO 56006:2021(Main)

This document provides guidelines for supporting strategic intelligence within innovation management. It aims at addressing the following areas concerning strategic intelligence at strategic and operational levels: â€”Â Â Â creating a strategic intelligence management strategy to support innovation in an organization; â€”Â Â Â establishing strategic intelligence management in support of the innovation activities and initiatives within the innovation management system and the related innovation processes; â€”Â Â Â applying strategic intelligence tools and methods in support of the innovation activities and initiatives within the innovation management system and the related innovation processes. Strategic intelligence is transversal and cross-sectorial by nature. It is not limited to innovation activities and can apply to all areas where knowledge is required for strategic decision-making and consequent actions. This document is not applicable to: â€”Â Â Â certification; â€”Â Â Â data protection.

Standard
11 pages
English language
sale 15% off
Draft
11 pages
English language
sale 15% off

SIST EN ISO 13485:2016/A11:2021(Amendment)

Medical devices - Quality management systems - Requirements for regulatory purposes (ISO 13485:2016)

EN ISO 13485:2016/A11:2021

Amendment
27 pages
English language
sale 10% off
e-Library read for
1 day
Amendment
27 pages
English language
sale 10% off
e-Library read for
1 day
Amendment
52 pages
English language
sale 10% off
e-Library read for
1 day

SIST ISO 37002:2021(Main)

Whistleblowing management systems - Guidelines

ISO 37002:2021

This document gives guidelines for establishing, implementing and maintaining an effective whistleblowing management system based on the principles of trust, impartiality and protection in the following four steps:
a) receiving reports of wrongdoing;
b) assessing reports of wrongdoing;
c) addressing reports of wrongdoing;
d) concluding whistleblowing cases.
The guidelines of this document are generic and intended to be applicable to all organizations, regardless of type, size, nature of activity, and whether in the public, private or not-for profit sectors.
The extent of application of these guidelines depends on the factors specified in 4.1, 4.2 and 4.3. The whistleblowing management system can be stand-alone or can be used as part of an overall management system.

Standard
40 pages
English language
sale 10% off
e-Library read for
1 day
Standard
33 pages
English language
sale 15% off
Standard
35 pages
French language
sale 15% off
Standard
35 pages
Spanish language
sale 15% off
Draft
32 pages
English language
sale 15% off

SIST ISO 30401:2021(Main)

Knowledge management systems - Requirements

ISO 30401:2018

This document sets requirements and provides guidelines for establishing, implementing, maintaining, reviewing and improving an effective management system for knowledge management in organizations. All the requirements of this document are applicable to any organization, regardless of its type or size, or the products and services it provides.

Standard
26 pages
English language
sale 10% off
e-Library read for
1 day
Standard
20 pages
English language
sale 15% off
Standard
23 pages
French language
sale 15% off

Energy management systems -- Guidelines for a phased implementation

ISO 50005:2021(Main)

This document gives guidance for organizations on establishing a phased approach to implement an energy management system (EnMS). This phased approach is intended to support and simplify the implementation of an EnMS for all types of organizations, in particular for small and medium-sized organizations (SMOs). This document gives guidance on the use of twelve core elements with four levels of maturity for each element to establish, implement, maintain and improve an EnMS that results in energy performance improvement. It enables the user of this document to implement a phased approach to achieve a level of energy management appropriate to its objectives and to build a strong foundation which can subsequently be extended towards meeting the requirements of ISO 50001:2018. This document is consistent with ISOÂ 50001:2018 but does not cover all of its requirements.

Standard
37 pages
English language
sale 15% off
Standard
46 pages
French language
sale 15% off
Draft
37 pages
English language
sale 15% off
Draft
46 pages
French language
sale 15% off

Quality management - Guidance on statistical techniques for ISO 9001:2015

SIST ISO 10017:2021

ISO 10017:2021

This document gives guidelines for the selection of appropriate statistical techniques that can be useful
to an organization, irrespective of size or complexity, in developing, implementing, maintaining and
improving a quality management system in conformity with ISO 9001:2015.
This document does not provide guidance on how to use the statistical techniques.

Standard
36 pages
English language
sale 10% off
e-Library read for
1 day
Draft
35 pages
English language
sale 10% off
e-Library read for
1 day

29-Sep-2020
22-Aug-2021
03.100.70
03.120.10
03.120.30
VZK

Whistleblowing management systems -- Guidelines

ISO 37002:2021(Main)

SIST ISO 37002:2021

This document gives guidelines for establishing, implementing and maintaining an effective whistleblowing management system based on the principles of trust, impartiality and protection in the following four steps: a) receiving reports of wrongdoing; b) assessing reports of wrongdoing; c) addressing reports of wrongdoing; d) concluding whistleblowing cases. The guidelines of this document are generic and intended to be applicable to all organizations, regardless of type, size, nature of activity, and whether in the public, private or not-for profit sectors. The extent of application of these guidelines depends on the factors specified in 4.1, 4.2 and 4.3. The whistleblowing management system can be stand-alone or can be used as part of an overall management system.

Standard
40 pages
English language
sale 10% off
e-Library read for
1 day
Standard
33 pages
English language
sale 15% off
Standard
35 pages
French language
sale 15% off
Standard
35 pages
Spanish language
sale 15% off
Draft
32 pages
English language
sale 15% off

Quality management systems -- Managing an organization for quality results -- Guidance for realizing financial and economic benefits

SIST ISO 10014:2021

ISO 10014:2021

This document gives guidelines for realizing financial and economic benefits by applying a top-down structured approach to achieving financial and economic benefits. The structured approach uses the quality management principles and quality management system described in the ISO 9000 family of management system standards to:
a) monitor and manage trends in key performance metrics;
b) take improvement action based on the observed metrics.
This document is directed specifically to the top management of an organization.
This document is applicable to any organization, whether from the public, private or not-for-profit sector, regardless of its business model, revenue, number of employees, diversity of product and service offerings, organizational culture, complexity of processes, place or number of locations.
This document complements ISOÂ 9001:2015 and ISOÂ 9004:2018 for performance improvements and provides examples of achievable benefits from the application of concepts in those standards. This document identifies associated practical management methods and tools to assist in realizing the benefits.

Standard
25 pages
English language
sale 10% off
e-Library read for
1 day
Standard
19 pages
English language
sale 15% off
Standard
20 pages
French language
sale 15% off
Standard
20 pages
Spanish language
sale 15% off
Draft
19 pages
English language
sale 15% off
Draft
25 pages
English language
sale 10% off
e-Library read for
1 day
Draft
20 pages
French language
sale 15% off

29-Sep-2020
09-May-2021
03.100.70
03.120.10
VZK

SIST ISO 37301:2021(Main)

Compliance management systems - Requirements with guidance for use

ISO 37301:2021

This document specifies requirements and provides guidelines for establishing, developing, implementing, evaluating, maintaining and improving an effective compliance management system within an organization.
This document is applicable to all types of organizations regardless of the type, size and nature of the activity, as well as whether the organization is from the public, private or non-profit sector.
All requirements specified in this document that refer to a governing body apply to top management in cases where an organization does not have a governing body as a separate function.

Standard
48 pages
English language
sale 10% off
e-Library read for
1 day
Standard
40 pages
English language
sale 15% off
Standard
44 pages
French language
sale 15% off
Standard
44 pages
Spanish language
sale 15% off
Draft
40 pages
English language
sale 15% off

31-Jan-2021
28-Apr-2021
03.100.01
03.100.02
03.100.70
VZK

Quality management systems - Guidance for documented information

SIST ISO 10013:2021

ISO 10013:2021

This document gives guidance for the development and maintenance of the documented information necessary to support an effective quality management system, tailored to the specific needs of the organization.
This document can also be used to support other management systems, e.g. environmental or occupational health and safety management systems.

Standard
14 pages
English language
sale 15% off
Standard
19 pages
English language
sale 10% off
e-Library read for
1 day
Standard
14 pages
English language
sale 15% off
Standard
15 pages
French language
sale 15% off
Standard
15 pages
French language
sale 15% off
Standard
15 pages
Spanish language
sale 15% off
Draft
14 pages
English language
sale 15% off

29-Sep-2020
28-Apr-2021
03.100.70
03.120.10
VZK

SIST EN ISO/IEC 27017:2021(Main)

Information technology - Security techniques - Code of practice for information security controls based on ISO/IEC 27002 for cloud services (ISO/IEC 27017:2015)

EN ISO/IEC 27017:2021

This Recommendation | International Standard gives guidelines for information security controls applicable to the
provision and use of cloud services by providing:
– additional implementation guidance for relevant controls specified in ISO/IEC 27002;
– additional controls with implementation guidance that specifically relate to cloud services.
This Recommendation | International Standard provides controls and implementation guidance for both cloud service
providers and cloud service customers.

Standard
44 pages
English language
sale 10% off
e-Library read for
1 day

15-Nov-2020
13-Apr-2021
03.100.70
35.030
35.210
ITC

Compliance management systems -- Requirements with guidance for use

ISO 37301:2021(Main)

SIST ISO 37301:2021

This document specifies requirements and provides guidelines for establishing, developing, implementing, evaluating, maintaining and improving an effective compliance management system within an organization. This document is applicable to all types of organizations regardless of the type, size and nature of the activity, as well as whether the organization is from the public, private or non-profit sector. All requirements specified in this document that refer to a governing body apply to top management in cases where an organization does not have a governing body as a separate function.

Standard
48 pages
English language
sale 10% off
e-Library read for
1 day
Standard
40 pages
English language
sale 15% off
Standard
44 pages
French language
sale 15% off
Standard
44 pages
Spanish language
sale 15% off
Draft
40 pages
English language
sale 15% off

ISO/IEC TS 27022:2021(Main)

Information technology -- Guidance on information security management system processes

This document defines a process reference model (PRM) for the domain of information security management, which is meeting the criteria defined in ISO/IEC 33004 for process reference models (see Annex A). It is intended to guide users of ISO/IEC 27001 to: — incorporate the process approach as described by ISO/IEC 27000:2018, 4.3, within the ISMS; — be aligned to all the work done within other standards of the ISO/IEC 27000 family from the perspective of the operation of ISMS processes — support users in the operation of an ISMS ? this document is complementing the requirements-oriented perspective of ISO/IEC 27003 with an operational, process-oriented point of view.

Technical specification
43 pages
English language
sale 15% off
Draft
43 pages
English language
sale 15% off

Quality management systems -- Guidance for documented information

ISO 10013:2021(Main)

SIST ISO 10013:2021

This document gives guidance for the development and maintenance of the documented information necessary to support an effective quality management system, tailored to the specific needs of the organization. This document can also be used to support other management systems, e.g. environmental or occupational health and safety management systems.

Standard
14 pages
English language
sale 15% off
Standard
19 pages
English language
sale 10% off
e-Library read for
1 day
Standard
14 pages
English language
sale 15% off
Standard
15 pages
French language
sale 15% off
Standard
15 pages
French language
sale 15% off
Standard
15 pages
Spanish language
sale 15% off
Draft
14 pages
English language
sale 15% off

Energy management systems -- Guidance for implementing a common energy management system in multiple organizations

ISO 50009:2021(Main)

This document gives guidelines for establishing, implementing, maintaining and improving a common energy management system (EnMS) for multiple organizations. This document follows the general structure used in ISO 50001:2018.

Standard
29 pages
English language
sale 15% off
Standard
31 pages
French language
sale 15% off
Draft
29 pages
English language
sale 15% off

SIST EN ISO 56002:2021(Main)

Innovation management - Innovation management system - Guidance (ISO 56002:2019)

EN ISO 56002:2021

1.1 This document provides guidance for the establishment, implementation, maintenance, and continual improvement of an innovation management system for use in all established organizations. It is applicable to:
a) organizations seeking sustained success by developing and demonstrating their ability to effectively manage innovation activities to achieve the intended outcomes;
b) users, customers, and other interested parties, seeking confidence in the innovation capabilities of an organization;
c) organizations and interested parties seeking to improve communication through a common understanding of what constitutes an innovation management system;
d) providers of training in, assessment of, or consultancy for, innovation management and innovation management systems;
e) policy makers, aiming for higher effectiveness of support programs targeting the innovation capabilities and competitiveness of organizations and the development of society.
1.2 All the guidance within this document is generic and intended to be applicable to:
a) all types of organizations, regardless of type, sector, or size. The focus is on established organizations, with the understanding that both temporary organizations and start-ups can also benefit by applying these guidelines in all or in part;
b) all types of innovations, e.g. product, service, process, model, and method, ranging from incremental to radical;
c) all types of approaches, e.g. internal and open innovation, user-, market-, technology-, and design-driven innovation activities.
It does not describe detailed activities within the organization, but rather provides guidance at a general level. It does not prescribe any requirements or specific tools or methods for innovation activities.

Standard
38 pages
English language
sale 10% off
e-Library read for
1 day

31-Oct-2020
26-Jan-2021
03.100.01
03.100.40
03.100.50
03.100.70
I13

SIST EN ISO/IEC 27006:2021(Main)

Information technology - Security techniques - Requirements for bodies providing audit and certification of information security management systems (ISO/IEC 27006:2015, including Amd 1:2020)

EN ISO/IEC 27006:2020

This International Standard specifies requirements and provides guidance for bodies providing
audit and certification of an information security management system (ISMS), in addition to the
requirements contained within ISO/IEC 17021-1 and ISO/IEC 27001. It is primarily intended to support
the accreditation of certification bodies providing ISMS certification.
The requirements contained in this International Standard need to be demonstrated in terms of
competence and reliability by any body providing ISMS certification, and the guidance contained in
this International Standard provides additional interpretation of these requirements for any body
providing ISMS certification.
NOTE This International Standard can be used as a criteria document for accreditation, peer assessment or
other audit processes.

Standard
49 pages
English language
sale 10% off
e-Library read for
1 day

11-Oct-2020
17-Jan-2021
03.100.70
03.120.20
35.030
ITC

Environmental management systems -- Guidelines for incorporating material circulation in design and development

ISO 14009:2020(Main)

This document gives guidelines for assisting organizations in establishing, documenting, implementing, maintaining and continually improving material circulation in their design and development in a systematic manner, using an environmental management system (EMS) framework. These guidelines are intended to be used by those organizations that implement an EMS in accordance with ISO 14001. The guidelines can also help in integrating material circulation strategies in design and development when using other management systems. The guidelines can be applied to any organization regardless of its size or activity. This document provides guidelines for design strategies on material circulation to achieve the material efficiency objectives of an organization, by focusing on the following aspects: — type and quantity of materials in products; — product lifetime extension; — recovery of products, parts and materials. In design and development, many aspects are considered, such as safety, energy efficiency, performance and cost. Although important, they are not addressed in this document.

Standard
44 pages
English language
sale 15% off
Standard
48 pages
French language
sale 15% off
Draft
44 pages
English language
sale 15% off
Draft
48 pages
French language
sale 15% off

Information security, cybersecurity and privacy protection -- Governance of information security

ISO/IEC 27014:2020(Main)

This document provides guidance on concepts, objectives and processes for the governance of information security, by which organizations can evaluate, direct, monitor and communicate the information security-related processes within the organization. The intended audience for this document is: — governing body and top management; — those who are responsible for evaluating, directing and monitoring an information security management system (ISMS) based on ISO/IEC 27001; — those responsible for information security management that takes place outside the scope of an ISMS based on ISO/IEC 27001, but within the scope of governance. This document is applicable to all types and sizes of organizations. All references to an ISMS in this document apply to an ISMS based on ISO/IEC 27001. This document focuses on the three types of ISMS organizations given in Annex B. However, this document can also be used by other types of organizations.

Standard
16 pages
English language
sale 15% off
Draft
16 pages
English language
sale 15% off

SIST EN ISO 14002-1:2020(Main)

Environmental management systems - Guidelines for using ISO 14001 to address environmental aspects and conditions within an environmental topic area - Part 1: General (ISO 14002-1:2019)

EN ISO 14002-1:2020

This document gives general guidelines for organizations seeking to systematically manage environmental aspects or respond to the effects of changing environmental conditions within one or more environmental topic areas, based on ISO 14001.
This document also constitutes a framework for common elements of subsequent parts of the ISO 14002 series.

Standard
20 pages
English language
sale 10% off
e-Library read for
1 day

09-Jul-2020
04-Oct-2020
03.100.70
13.020.10
UZO

Quality management systems -- Guidance for the application of ISO 19443:2018

ISO/TR 4450:2020(Main)

This document provides guidance on the implementation of the ISO 19443 requirements, with examples of possible steps an organization can take to meet the requirements. It does not add to, subtract from, or in any way modify those requirements. This document does not prescribe mandatory approaches to implementation, or provide any preferred method of interpretation.

Technical report
55 pages
English language
sale 15% off
Draft
55 pages
English language
sale 15% off

SIST EN ISO/IEC 27011:2020(Main)

Information technology - Security techniques - Code of practice for Information security controls based on ISO/IEC 27002 for telecommunications organizations (ISO/IEC 27011:2016)

EN ISO/IEC 27011:2020

The scope of this Recommendation | International Standard is to define guidelines supporting the implementation of
information security controls in telecommunications organizations.
The adoption of this Recommendation | International Standard will allow telecommunications organizations to meet
baseline information security management requirements of confidentiality, integrity, availability and any other relevant
security property.

Standard
41 pages
English language
sale 10% off
e-Library read for
1 day

31-Mar-2020
28-Jul-2020
03.100.70
33.030
35.030
ITC

Aerospace series - Quality Management Systems - Nonconformance Data Definition and Documentation

SIST EN 9131:2020(Main)

EN 9131:2020

1.1 Application:
This document defines the common nonconformity data definition and documentation that shall be exchanged between an internal/external supplier or sub-tier supplier, and the customer when informing about a nonconformity requiring formal decision. The requirements are applicable, partly or totally, when reporting a product nonconformity to the owner or operator, as user of the end item (e.g. engine, aircraft, spacecraft, helicopter), if specified by contract.
Reporting of nonconformity data, either electronically or conventionally on paper, is subject to the terms and conditions of the contract. This also includes, where applicable, data access under export control regulations.
1.2 Purpose:
The process of exchanging, coordinating, and approving nonconformity data via waiver/concession or product quality escape varies with the multiple relationships and agreements among all parties concerned. The information provided by this document forms architecture for submitting and managing data that allows for concise and accurate communication using various methods. The main objective of this document is to provide the definition of a data set that can be integrated into any form of communication (e.g. electronic data interchange, submission of conventional paper forms).

Standard
19 pages
English language
sale 10% off
e-Library read for
1 day

12-Sep-2018
26-Jul-2020
03.100.70
03.120.10
49.020
I13

SIST EN ISO 34101-1:2020(Main)

Sustainable and traceable cocoa - Part 1: Requirements for cocoa sustainability management systems (ISO 34101-1:2019)

EN ISO 34101-1:2020

This document specifies high-level requirements for management systems for sustainable cocoa bean production, including post-harvest processes, if applicable, and traceability of the sustainably produced cocoa beans within the organization producing the cocoa beans.
NOTE 1 Post-harvest processes include pod-breaking, fermentation, drying, sorting, packing, transport and storage of cocoa beans.
Only organizations that fulfil both the cocoa sustainability management system requirements of either this document or ISO 34101‑4:2019, Annex A or B, and the performance requirements of ISO 34101‑2 can claim their cocoa beans have been sustainably produced.
NOTE 2 ISO 34101-4 specifies the requirements for cocoa sustainability management systems at entry and medium levels.

Standard
51 pages
English language
sale 10% off
e-Library read for
1 day

30-Apr-2020
20-Jul-2020
03.100.70
67.140.30
I13

IEC

IEC 63152:2020(Main)

Smart cities - City service continuity against disasters - The role of the electrical supply

IEC 63152:2020 establishes concepts and gives guidelines to help sustain a variety of city services on the occasion of a disaster from the perspective of providing electricity. It outlines the basic concepts on how multiple city services can cooperate and continue by electricity continuity plan(s) and electricity continuity system(s). It also specifies methods and means to establish these.
The users of this document are assumed to be city developers, city operators, equipment manufacturers, essential service providers and disaster management personnel.
Cities are facing many kinds of potential threats which affect the continuity of city services. There exists, therefore, a great need to establish safe and secure societies in which negative impacts on city services to the citizens are minimized and city services are continuously available to them during a period of emergency. There is no doubt that, in modern cities, electricity plays a critical role in maintaining city services.

Standard
22 pages
English language
sale 15% off
Standard
44 pages
English and French language
sale 15% off

Energy management systems -- Guidance for the implementation, maintenance and improvement of an ISO 50001 energy management system

ISO 50004:2020(Main)

This document gives practical guidelines and examples for establishing, implementing, maintaining and improving an energy management system (EnMS) in accordance with the systematic approach of ISO 50001:2018. The guidance in this document is applicable to any organization. This document does not provide guidance on how to develop an integrated management system. While the guidance in this document is consistent with the requirements of ISO 50001:2018, it does not provide interpretations of those requirements.

Standard
37 pages
English language
sale 15% off
Standard
37 pages
English language
sale 15% off
Standard
40 pages
French language
sale 15% off
Standard
40 pages
Spanish language
sale 15% off

SIST EN ISO 29001:2020(Main)

Petroleum, petrochemical and natural gas industries - Sector-specific quality management systems - Requirements for product and service supply organizations (ISO 29001:2020)

EN ISO 29001:2020

This document defines quality management system requirements for product and service supply
organizations to the petroleum, petrochemical and natural gas industries.
This document is written as a supplement to ISO 9001:2015. The supplementary requirements and
guidance to ISO 9001:2015 have been developed to manage supply chain risks and opportunities
associated with the petroleum, petrochemical and natural gas industries and to provide a framework
for aligning requirements with complementary standards employed within the industries.

Standard
67 pages
English language
sale 10% off
e-Library read for
1 day

30-Apr-2018
08-Jun-2020
03.100.70
03.120.10
75.020
I13

Petroleum, petrochemical and natural gas industries -- Sector-specific quality management systems -- Requirements for product and service supply organizations

ISO 29001:2020(Main)

This document defines quality management system requirements for product and service supply organizations to the petroleum, petrochemical and natural gas industries. This document is written as a supplement to ISO 9001:2015. The supplementary requirements and guidance to ISO 9001:2015 have been developed to manage supply chain risks and opportunities associated with the petroleum, petrochemical and natural gas industries and to provide a framework for aligning requirements with complementary standards employed within the industries.

Standard
53 pages
English language
sale 15% off
Standard
53 pages
English language
sale 15% off

SIST EN ISO/IEC 27001:2017/AC 101:2020

Information technology - Security techniques - Information security management systems - Requirements (ISO/IEC 27001:2013 including Cor 1:2014 and Cor 2:2015)

This International Standard specifies the requirements for establishing, implementing, maintaining
and continually improving an information security management system within the context of the
organization. This International Standard also includes requirements for the assessment and treatment
of information security risks tailored to the needs of the organization. The requirements set out in this
International Standard are generic and are intended to be applicable to all organizations, regardless
of type, size or nature. Excluding any of the requirements specified in Clauses 4 to 10 is not acceptable
when an organization claims conformity to this International Standard.

Corrigendum
1 page
Slovenian language
sale 10% off
e-Library read for
1 day

20-Apr-2020
03.100.70
35.030
ITC

Information security, cybersecurity and privacy protection -- Sector-specific application of ISO/IEC 27001 -- Requirements

ISO/IEC 27009:2020(Main)

oSIST ISO/IEC DIS 27009:2019

This document specifies the requirements for creating sector-specific standards that extend ISO/IEC 27001, and complement or amend ISO/IEC 27002 to support a specific sector (domain, application area or market). This document explains how to: — include requirements in addition to those in ISO/IEC 27001, — refine or interpret any of the ISO/IEC 27001 requirements, — include controls in addition to those of ISO/IEC 27001:2013, Annex A and ISO/IEC 27002, — modify any of the controls of ISO/IEC 27001:2013, Annex A and ISO/IEC 27002, — add guidance to or modify the guidance of ISO/IEC 27002. This document specifies that additional or refined requirements do not invalidate the requirements in ISO/IEC 27001. This document is applicable to those involved in producing sector-specific standards.

Standard
18 pages
English language
sale 15% off
Draft
24 pages
English language
sale 10% off
e-Library read for
1 day

SIST EN ISO/IEC 27019:2020(Main)

Information technology - Security techniques - Information security controls for the energy utility industry (ISO/IEC 27019:2017, Corrected version 2019-08)

EN ISO/IEC 27019:2020

EN-ISO/IEC 27019 provides guidance based on ISO/IEC 27002:2013 applied to process control systems used by the energy utility industry for controlling and monitoring the production or generation, transmission, storage and distribution of electric power, gas, oil and heat, and for the control of associated supporting processes. This includes in particular the following: - central and distributed process control, monitoring and automation technology as well as information systems used for their operation, such as programming and parameterization devices; - digital controllers and automation components such as control and field devices or Programmable Logic Controllers (PLCs), including digital sensor and actuator elements; - all further supporting information systems used in the process control domain, e.g. for supplementary data visualization tasks and for controlling, monitoring, data archiving, historian logging, reporting and documentation purposes; - communication technology used in the process control domain, e.g. networks, telemetry, telecontrol applications and remote control technology; - Advanced Metering Infrastructure (AMI) components, e.g. smart meters; - measurement devices, e.g. for emission values; - digital protection and safety systems, e.g. protection relays, safety PLCs, emergency governor mechanisms; - energy management systems, e.g. of Distributed Energy Resources (DER), electric charging infrastructures, in private households, residential buildings or industrial customer installations; - distributed components of smart grid environments, e.g. in energy grids, in private households, residential buildings or industrial customer installations; - all software, firmware and applications installed on above-mentioned systems, e.g. DMS (Distribution Management System) applications or OMS (Outage Management System); - any premises housing the above-mentioned equipment and systems; - remote maintenance systems for above-mentioned systems.

Standard
46 pages
English language
sale 10% off
e-Library read for
1 day
Standard
46 pages
English language
sale 10% off
e-Library read for
1 day

SIST EN ISO 14006:2020(Main)

Environmental management systems - Guidelines for incorporating ecodesign (ISO 14006:2020)

EN ISO 14006:2020

EN-ISO 14006 gives guidelines for assisting organizations in establishing, documenting, implementing, maintaining and continually improving their management of ecodesign as part of an environmental management system (EMS).This document is intended to be used by organizations that have implemented an EMS in accordance with ISO 14001, but it can also help in integrating ecodesign using other management systems. The guidelines are applicable to any organization regardless of its type, size or product(s) provided.This document is applicable to product-related environmental aspects and activities that an organization can control and those it can influence.This document does not establish specific environmental performance criteria.

Standard
44 pages
English language
sale 10% off
e-Library read for
1 day

01-Apr-2020
03.100.70
13.020.10
UZO

SIST EN ISO 22313:2020(Main)

Security and resilience - Business continuity management systems - Guidance on the use of ISO 22301 (ISO 22313:2020)

EN ISO 22313:2020

ISO 22313 gives guidance and recommendations for applying the requirements of the business continuity management system (BCMS) given in ISO 22301. The guidance and recommendations are based on good international practice.This document is applicable to organizations that:a) implement, maintain and improve a BCMS;b) seek to ensure conformity with stated business continuity policy;c) need to be able to continue to deliver products and services at an acceptable predefined capacity during a disruption;d) seek to enhance their resilience through the effective application of the BCMS.The guidance and recommendations are applicable to all sizes and types of organizations, including large, medium and small organizations operating in industrial, commercial, public and not-for-profit sectors. The approach adopted depends on the organization’s operating environment and complexity.

Standard
70 pages
English language
sale 10% off
e-Library read for
1 day

30-Jun-2019
30-Mar-2020
03.100.01
03.100.70
I13

EN ISO/IEC 27019:2020(Main)

Information technology - Security techniques - Information security controls for the energy utility industry (ISO/IEC 27019:2017, Corrected version 2019-08)

SIST EN ISO/IEC 27019:2020

Standard
46 pages
English language
sale 10% off
e-Library read for
1 day
Standard
46 pages
English language
sale 10% off
e-Library read for
1 day

SIST EN ISO/IEC 27000:2020(Main)

Information technology - Security techniques - Information security management systems - Overview and vocabulary (ISO/IEC 27000:2018)

EN ISO/IEC 27000:2020

EN ISO/IEC 27000 provides the overview of information security management systems (ISMS). It also provides terms and definitions commonly used in the ISMS family of standards.

Standard
35 pages
English language
sale 10% off
e-Library read for
1 day

18-Sep-2019
09-Mar-2020
01.040.35
03.100.70
35.030
ITC

Security and resilience - Business continuity management systems - Guidance on the use of ISO 22301 (ISO 22313:2020)

EN ISO 22313:2020(Main)

SIST EN ISO 22313:2020

This document gives guidance and recommendations for applying the requirements of the business continuity management system (BCMS) given in ISO 22301. The guidance and recommendations are based on good international practice.
This document is applicable to organizations that:
a)   implement, maintain and improve a BCMS;
b)   seek to ensure conformity with stated business continuity policy;
c)   need to be able to continue to deliver products and services at an acceptable predefined capacity during a disruption;
d)   seek to enhance their resilience through the effective application of the BCMS.
The guidance and recommendations are applicable to all sizes and types of organizations, including large, medium and small organizations operating in industrial, commercial, public and not-for-profit sectors. The approach adopted depends on the organization's operating environment and complexity.

Standard
70 pages
English language
sale 10% off
e-Library read for
1 day

Security and resilience -- Business continuity management systems -- Guidance on the use of ISO 22301

ISO 22313:2020(Main)

This document gives guidance and recommendations for applying the requirements of the business continuity management system (BCMS) given in ISO 22301. The guidance and recommendations are based on good international practice. This document is applicable to organizations that: a) implement, maintain and improve a BCMS; b) seek to ensure conformity with stated business continuity policy; c) need to be able to continue to deliver products and services at an acceptable predefined capacity during a disruption; d) seek to enhance their resilience through the effective application of the BCMS. The guidance and recommendations are applicable to all sizes and types of organizations, including large, medium and small organizations operating in industrial, commercial, public and not-for-profit sectors. The approach adopted depends on the organization's operating environment and complexity.

Standard
55 pages
English language
sale 15% off
Standard
58 pages
French language
sale 15% off

EN ISO/IEC 27000:2020(Main)

Information technology - Security techniques - Information security management systems - Overview and vocabulary (ISO/IEC 27000:2018)

SIST EN ISO/IEC 27000:2020

EN ISO/IEC 27000 provides the overview of information security management systems (ISMS). It also provides terms and definitions commonly used in the ISMS family of standards.

Standard
35 pages
English language
sale 10% off
e-Library read for
1 day

Environmental management systems - Guidelines for incorporating ecodesign (ISO 14006:2020)

EN ISO 14006:2020(Main)

SIST EN ISO 14006:2020

This document gives guidelines for assisting organizations in establishing, documenting, implementing, maintaining and continually improving their management of ecodesign as part of an environmental management system (EMS).
This document is intended to be used by organizations that have implemented an EMS in accordance with ISO 14001, but it can also help in integrating ecodesign using other management systems. The guidelines are applicable to any organization regardless of its type, size or product(s) provided.
This document is applicable to product-related environmental aspects and activities that an organization can control and those it can influence.
This document does not establish specific environmental performance criteria.

Standard
44 pages
English language
sale 10% off
e-Library read for
1 day

Environmental management systems -- Guidelines for incorporating ecodesign

ISO 14006:2020(Main)

This document gives guidelines for assisting organizations in establishing, documenting, implementing, maintaining and continually improving their management of ecodesign as part of an environmental management system (EMS). This document is intended to be used by organizations that have implemented an EMS in accordance with ISO 14001, but it can also help in integrating ecodesign using other management systems. The guidelines are applicable to any organization regardless of its type, size or product(s) provided. This document is applicable to product-related environmental aspects and activities that an organization can control and those it can influence. This document does not establish specific environmental performance criteria.

Standard
32 pages
English language
sale 15% off
Standard
35 pages
French language
sale 15% off
Standard
35 pages
Spanish language
sale 15% off

Environmental management systems -- Guidelines for using ISO 14001 to address environmental aspects and conditions within an environmental topic area

ISO 14002-1:2019(Main)

This document gives general guidelines for organizations seeking to systematically manage environmental aspects or respond to the effects of changing environmental conditions within one or more environmental topic areas, based on ISO 14001. This document also constitutes a framework for common elements of subsequent parts of the ISO 14002 series.

Standard
10 pages
English language
sale 15% off
Standard
12 pages
French language
sale 15% off
Standard
12 pages
Spanish language
sale 15% off

SIST EN ISO 22301:2020(Main)

Security and resilience - Business continuity management systems - Requirements (ISO 22301:2019)

EN ISO 22301:2019

This document specifies requirements to implement, maintain and improve a management system to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from disruptions when they arise. The requirements specified in this document are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization’s operating environment and complexity. This document is applicable to all types and sizes of organizations that: a) implement, maintain and improve a BCMS; b) seek to ensure conformity with stated business continuity policy; c) need to be able to continue to deliver products and services at an acceptable predefined capacity during a disruption; d) seek to enhance their resilience through the effective application of the BCMS. This document can be used to assess an organization’s ability to meet its own business continuity needs and obligations.

Standard
32 pages
English language
sale 10% off
e-Library read for
1 day

31-Mar-2019
24-Nov-2019
03.100.01
03.100.70
I13

SIST EN ISO 14005:2019(Main)

Environmental management systems - Guidelines for a flexible approach to phased implementation (ISO14005:2019)

EN ISO 14005:2019

EN-ISO 14005 gives guidelines for a phased approach to establish, implement, maintain and improve an environmental management system (EMS) that organizations, including small and medium-sized enterprises (SMEs), can adopt to enhance their environmental performance. The phased approach provides flexibility that allows organizations to develop their EMS at their own pace, over a number of phases, according to their own circumstances. Each phase consists of six consecutive stages. The system's maturity at the end of each phase can be characterized using the five-level maturity matrix provided in Annex A. This document is applicable to any organization regardless of their current environmental performance, the nature of the activities undertaken or the locations at which they occur. The phased approach enables an organization to develop a system that ultimately satisfies the requirements of ISO 14001. The guidance does not cover those elements of specific systems that go beyond ISO 14001 and it is not intended to provide interpretations of the requirements of ISO 14001.

Standard
71 pages
English language
sale 10% off
e-Library read for
1 day

22-May-2018
18-Nov-2019
03.100.70
13.020.10
UZO

Biorisk management for laboratories and other related organisations

ISO 35001:2019(Main)

This document defines a process to identify, assess, control, and monitor the risks associated with hazardous biological materials. This document is applicable to any laboratory or other organization that works with, stores, transports, and/or disposes of hazardous biological materials. This document is intended to complement existing International Standards for laboratories. This document is not intended for laboratories that test for the presence of microorganisms and/or toxins in food or feedstuffs. This document is not intended for the management of risks from the use of genetically modified crops in agriculture.

Standard
26 pages
English language
sale 15% off

Educational organizations - Management systems for educational organizations - Requirements with guidance for use

SIST ISO 21001:2019

ISO/NP 21001

Standard
73 pages
English language
sale 10% off
e-Library read for
1 day

Security and resilience - Business continuity management systems - Requirements (ISO 22301:2019)

EN ISO 22301:2019(Main)

SIST EN ISO 22301:2020

This document specifies requirements to implement, maintain and improve a management system to protect against, reduce the likelihood of the occurrence of, prepare for, respond to and recover from disruptions when they arise.
The requirements specified in this document are generic and intended to be applicable to all organizations, or parts thereof, regardless of type, size and nature of the organization. The extent of application of these requirements depends on the organization's operating environment and complexity.
This document is applicable to all types and sizes of organizations that:
a)   implement, maintain and improve a BCMS;
b)   seek to ensure conformity with stated business continuity policy;
c)   need to be able to continue to deliver products and services at an acceptable predefined capacity during a disruption;
d)   seek to enhance their resilience through the effective application of the BCMS.
This document can be used to assess an organization's ability to meet its own business continuity needs and obligations.

Standard
32 pages
English language
sale 10% off
e-Library read for
1 day