GB/T 27422-2019
合格评定业务连续性管理体系审核和认证机构要求
Conformity assessment—Requirements for bodies providing audit and certification of business continuity management systems
2019-12-10 发布
2020-07-01 实施
目 次
前言......................................1
引言.......................................1
1范围.......................................1
2规范性引用文件..................................1
3术语和定义....................................1
4原则.......................................1
5通用要求.....................................1
5.1法律与合同事宜...............................1
5.2公正性的管理................................1
5.3责任和财力....................................2
6结构要求........................................2
7资源要求........................................2
7.1人员能力.....................................2
7.2参与认证活动的人员................................3
7.3外部审核员和外部技术专家的使用..........................4
7.4人员记录.....................................4
7.5外包.......................................4
8信息要求...........................................4
8-1公开信息.........................................
8-2认证文件.........................................4
8.3认证资格的引用和标志的使用...............................5
8.4保密...........................................5
8-5认证机构与其客户间的信息交換...............................5
9过程要求...............................5
9.1认证前的活动...............................5
9.2策划审核...............................6
9.3初次认证...............................6
9.4实施审核...............................6
9.5认证决定...............................6
9.6保持认证...............................7
9.7申诉...............................7
9.8投诉...............................7
9.9客户的记录......................................7
10认证机构的管理要求..................................7
附SA（资料性附录）业务连续性管理体系审核及认证的知识 .................8
附SB＜资料性附录）BCMS能力需求分析与评价 .....................9
附录C （资料性附录）BCMS认证审核时间确定指南...................11
参考文献........................................14