NZS ISO/IEC 27036.1:2025
Cybersecurity – Supplier relationships – Part 1: Overview and concepts
This standard provides foundational guidance for New Zealand organisations wanting to manage information security risks in the context of supplier relationships.
This standard was considered for adoption by the P4830 Identical Adoption of Digital Standards Committee which included experts from government, industry, academia, and the private sector, all focused on the responsible use of emerging technologies.
This standard is identical to and has been reproduced from ISO/IEC 27036-1:2021, Cybersecurity – Supplier relationships – Part 1: Overview and concepts.
| Get this standard | Prices exclude GST | |
|---|---|---|
| PDF ( Single user document) |
$122.51 NZD
|
|
| HardCopy |
$136.13 NZD
|
|
| Networkable PDF |
Price varies
|
|
| Online Library ( Annual subscription) |
Info
Price varies
Online Library subscription information Online library subscriptions provide a cost-effective solution for organisations of any size to access the latest standards, offering 24/7 access to a personalised catalogue. The service ensures subscribers have have the most up-to-date version of selected standards, incluing automatic updates for any amendments or versions. Pricing is dependent on the chosen standards and the number of concurrent users, with discounts applied from the standards PDF price. For customised subscriptions or further inquiries, contact the Online Library team. |
NZS ISO/IEC 27036.1 2025
Committee representation
Acknowledgement
Copyright
Preface
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviated terms
5 Problem definition and key concepts
5.1 Motives for establishing supplier relationships
5.2 Types of supplier relationships
5.2.1 Supplier relationships for products
5.2.2 Supplier relationships for services
5.2.3 ICT supply chain
5.2.4 Cloud computing
5.3 Information security risks in supplier relationships and associated threats
5.4 Managing information security risks in supplier relationships
5.5 ICT supply chain considerations
6 Overall ISO/IEC 27036 structure and overview
6.1 Purpose and structure
6.2 Overview of ISO/IEC 27036-1: Overview and concepts
6.3 Overview of ISO/IEC 27036-2: Requirements
6.4 Overview of ISO/IEC 27036-3: Guidelines for information and communication technology (ICT) supply chain security
6.5 Overview of ISO/IEC 27036-4: Guidelines for security of cloud services
Bibliography
Keep me up-to-date
Sign up to receive updates when there are changes to this standard
Related Information
Similar Standards
-
AS/NZS ISO/IEC 27001:2023
Information security, cybersecurity and privacy protection – Information security management systems – Requirements
-
AS/NZS ISO/IEC 27001:2023 A1
Information security, cybersecurity and privacy protection - Privacy enhancing data de-identification framework
-
AS/NZS ISO/IEC 27002:2022
Information security, cybersecurity and privacy protection — Information security controls
-
AS/NZS ISO/IEC 27006.1:2025
Information security, cybersecurity and privacy protection – Requirements for bodies providing audit and certification of information security management systems, Part 1: General
NZS ISO/IEC 27036.1 2025
Committee representation
Acknowledgement
Copyright
Preface
Foreword
Introduction
1 Scope
2 Normative references
3 Terms and definitions
4 Symbols and abbreviated terms
5 Problem definition and key concepts
5.1 Motives for establishing supplier relationships
5.2 Types of supplier relationships
5.2.1 Supplier relationships for products
5.2.2 Supplier relationships for services
5.2.3 ICT supply chain
5.2.4 Cloud computing
5.3 Information security risks in supplier relationships and associated threats
5.4 Managing information security risks in supplier relationships
5.5 ICT supply chain considerations
6 Overall ISO/IEC 27036 structure and overview
6.1 Purpose and structure
6.2 Overview of ISO/IEC 27036-1: Overview and concepts
6.3 Overview of ISO/IEC 27036-2: Requirements
6.4 Overview of ISO/IEC 27036-3: Guidelines for information and communication technology (ICT) supply chain security
6.5 Overview of ISO/IEC 27036-4: Guidelines for security of cloud services
Bibliography
NZS ISO/IEC 27036.1:2025
Online Library subscription information
Online library subscriptions provide a cost-effective solution for organisations of any size to access the latest standards, offering 24/7 access to a personalised catalogue. The service ensures subscribers have have the most up-to-date version of selected standards, incluing automatic updates for any amendments or versions. Pricing is dependent on the chosen standards and the number of concurrent users, with discounts applied from the standards PDF price. For customised subscriptions or further inquiries, contact the Online Library team.