Management Systems Standards by Category

Management Systems Standards by Category

As of January 2024, there are over 25,000 international standards published by ISO.org. The below list contains the common Management Systems Standards that our team have utilized in completion of their projects (implementing, training, auditing, etc.). It includes related British Standards (BS), local standards, & ISO management system standards (both Type A and Type B).

Click here to visit ISO.org and learn more about Type A and Type B Management Systems Standards.

KEY

Type A Management Systems Standards (Requirements)

Type B Management Systems Standards (Guidelines)

Asset Management Standards (5)


ISO 19770-1:2012      IT Software Asset Management - Part 1: Processes and tiered assessment of conformance

ISO 19770-2:2015      IT Software Asset Management - Part 2: Software identification tag

ISO 55000:2014           Overview, principles and terminology

ISO 55001:2014           Requirements

ISO 55002:2018           Guidelines for the application of ISO 55001


Building Information Modelling (BIM) Standards (5)


ISO 19650-1:2018      Part 1: Concepts and principles

ISO 19650-2:2018      Part 2: Delivery phase of the assets

ISO 19650-3:2020      Part 3: Operational phase of the assets

ISO 19650-4:2022      Part 4: Information exchange

ISO 19650-5:2020      Part 5: Security-minded approach to information

Business Continuity, Disaster Recovery, Emergency, & Crisis Management Standards (17)


ISO 21110 2019           Information and documentation - Emergency preparedness and response

ISO 22361 2022           Crisis Management - Guidelines

ISO 22300 2021           Security and resilience - Vocabulary

ISO 22301:2019           Business continuity management systems - Requirements

ISO 22313:2020           BCMS Guidance on the use of ISO 22301

ISO 22316 2017           Organizational resilience - Principles and attributes

ISO 22317:2021           BCMS Guidelines for business impact analysis

ISO 22318:2021           BCMS Guidelines for supply chain continuity management

ISO 22320 2018           Emergency management - Guidelines for incident management

ISO 22322:2015           Emergency management - Guidelines for public warning

ISO 22324:2015           Emergency management - Guidelines for colour-coded alerts

ISO 22326:2018           Emergency management - Guidelines for monitoring facilities with identified hazards

ISO 22396 2020           Guidelines for information exchange between organizations

ISO 22397:2014           Guidelines for establishing partnering arrangements

ISO 22398:2013           Guidelines for exercises

ISO 27031:2011           Guidelines for information and communication technology readiness for business continuity

NCEMA 7000:2021   The National Standard For Business Continuity Management System (Specifications)

Corporate Governance & Compliance Standards (12)


ISO 19600:2014           Compliance management systems - Guidelines

ISO 37000:2021           Governance of Organizations

ISO 37001:2016           Anti-bribery management system - Requirements with guidance

ISO 37002:2021           Whistleblowing Management

ISO 38301:2021           Compliance management systems - Requirements with guidance

ISO 38500:2015           Governance of IT for the organization Security standards

ISO 38501:2015           Governance of IT - Implementation guide

ISO 38503:2022           Assessment of the governance of IT

ISO 38504:2016           Guidance for principles-based standards in the governance of IT

ISO 38505-1:2017      Part 1: Application of ISO 38500 to the governance of data

ISO 38505-3:2021      Part 3: Governance of data - Guidelines for data classification

ISO 38506:2020           Application of ISO 38500 to the governance of IT enabled investments


Collaborative Business Relationship Standards (4)


ISO 44000:2019           Principles for successful collaborative business relationship management

ISO 44001:2017           Requirements and framework

ISO 44002:2019           Guidelines on the implementation of ISO 44001

ISO 44004:2021           Guidelines for large organizations seeking collaboration with micro, small & medium-sized enterprises

Customer Satisfaction Standards (3)


ISO 10001:2018           Guidelines for codes of conduct for organizations

ISO 10002:2018           Guidelines for complaints handling in organizations

ISO 10003:2018           Guidelines for dispute resolution external to organizations

Digital Forensics Standards (4)


ISO 27037:2012           Guidelines for identification, collection, acquisition, and preservation of digital evidence

ISO 27038:2014           Specification for digital redaction

ISO 27041:2015           Guidance on assuring suitability and adequacy of incident investigative method

ISO 27042:2015           Guidelines for the analysis and interpretation of digital evidence

Electronic Discovery Standards (4)


ISO 27050-1:2019      Part 1: Electronic Discovery

ISO 27050-2:2018      Part 2: Guidance for Governance and Management of Electronic Discovery

ISO 27050-3:2020      Part 3: Guidelines for the Implementation of Digital Evidence Management Systems

ISO 27050-4:2021      Part 4: Technical readiness

Environmental and Energy Management Standards (5)


ISO 14001:2015           Environmental management systems - Requirements with guidance for use

ISO 14004:2016           Environmental management systems - General guidelines on implementation

ISO 50005:2021           Energy management systems - Guidelines for a phased implementation

ISO 50001:2018           Energy Management Systems - Requirements

PD 50600-5-1:2023   Data centre facilities & infrastructures - Part 5-1 Maturity Model for Energy Management & Environmental Sustainability

Facility Management Standards (5)


ISO 41001:2018           Management systems - Requirements with guidance for use

ISO 41011:2017           Vocabulary

ISO 41012:2017            Guidance on strategic sourcing and the development of agreements

ISO 41015:2023            Influencing organizational behaviour for improved facility outcomes

BS EN 15221-7:2012  Part 7 - Guidelines for Performance Benchmarking

Incident Management Standards (5)


ISO 22320 2018           Emergency management - Guidelines for incident management

ISO 27035-1:2016      Information security incident management - Part 1 Principles of incident management

ISO 27035-2:2016      Information security incident management - Part 2 Guidelines to plan and prepare for incident response

ISO 27035-3:2020      Information security incident management - Part 3 Guidelines for ICT incident response operations

ISO 27043:2015           Incident investigation principles and processes

Information Security Management Standards (46)


ISO 15408-3:2022      Evaluation criteria for IT security - Part 3 Security assurance components

ISO 27000:2018           ISMS Overview and Vocabulary

ISO 27001:2022           Requirements

ISO 27002:2022           Code of Practice for Information Security Controls

ISO 27003:2017           ISMS Guidance

ISO 27004:2016           Monitoring, measurement, analysis and evaluation

ISO 27005:2022           Guidance on managing information security risks

ISO 27006:2015           Requirements for bodies providing audit and certification of information security management systems

ISO 27006-2:2021      Part 2: Privacy information management systems

ISO 27007:2020           Guidelines for information security management systems auditing

ISO 27008:2011           Guidelines for auditors on information security controls

ISO 27009:2020           Sector-specific application of ISO 27001 Requirements

ISO 27010:2015           Information security management for inter-sector and inter-organizational communications

ISO 27011:2024           Information Security Management Guidelines for Telecommunications Organizations

ISO 27013:2021           Guidance on the Integrated Implementation of ISO 27001 and ISO 20000-1

ISO 27014:2020           Governance of Information Security

ISO 27015:2012           Guidelines for financial services

ISO 27016:2014           Organizational economics

ISO 27017:2015           Code of Practice for Information Security Controls Based on ISO 27002 for Cloud Services

ISO 27018:2019           Code of Practice for Protection of Personally Identifiable Information (PII) in Public Clouds Acting as PII Processors

ISO 27019:2017           Info sec. guidelines based on ISO 27002 for process control systems specific to the energy utility industry

ISO 27021:2017           Competence requirements for information security management systems professionals

ISO 27031:2011           Guidelines for information and communication technology readiness for business continuity

ISO 27032:2012           Guidelines for Cybersecurity

ISO 27033-1:2015      Network Security Part 1: Overview and concepts

ISO 27033-2:2012      Network Security Part 2: Guidelines for the design and implementation of network security

ISO 27033-3:2010      Network Security Part 3: Reference networking scenarios - Threats, design techniques and control issues

ISO 27033-4:2014      Network Security Part 4: Securing communications between networks using security gateways

ISO 27033-5:2013      Network Security Part 5: Securing communications across networks using Virtual Private Networks (VPNs)

ISO 27033-6:2016      Network Security Part 6: Securing wireless IP network access

ISO 27034-1:2011      Application Security Part 1: Overview and concepts

ISO 27034-2:2015      Application Security Part 2: Organization normative framework for application security

ISO 27034-5:2017      Application Security Part 5: Protocols and application security controls data structure

ISO 27034-7:2018      Application Security Part 7: Assurance prediction framework

ISO 27039:2015           Selection, deployment and operations of intrusion detection and prevention systems (IDPS)

ISO 27040:2015           Storage Security

ISO 27070:2021           Requirements for establishing virtualized roots of trust

ISO 27102:2019           Guidelines for cyber-insurance

ISO 27400:2022           Cybersecurity - IoT security and privacy - Guidelines

ISO 27551:2021           Requirements for attribute-based unlinkable entity authentication

ISO 27555:2021           Guidelines on personally identifiable information deletion

ISO 27701:2019           Privacy Information Management

ISO 27789:2021           Health informatics - Audit trails for electronic health records

ISO 27799:2016           Health informatics - Information security management in health using ISO IEC 27002

BS 10012:2009             Data protection - Specification for a personal information management system

PAS 555:2013                Cyber security risk - Governance and management - Specification

Information Security Standards for Supplier Relationships (7)


ISO 27036-1:2021      Part 1 Information Security for Supplier Relationships

ISO 27036-2:2022      Part 2 Requirements

ISO 27036-3:2013      Part 3 Guidelines for information and communication technology supply chain security

ISO 27036-4:2016      Part 4 Guidelines for security of cloud services

ISO 28001:2007           Best practices for implementing supply chain security, assessments & plans - Requirements & guidance

ISO 28002:2011           Development of resilience in the supply chain - Requirements with guidance for use

ISO 28004:2007           Security management systems for the supply chain - Guidelines for the implementation of ISO 28000

Innovation Management Standards (8)


ISO 56000:2020           Fundamentals and vocabulary

ISO 56002:2019           Guidance

ISO 56003:2019           Tools and methods for innovation partnership - Guidance

ISO 56004:2019           Innovation Management Assessment - Guidance

ISO 56005:2020           Innovation management - Tools and methods for intellectual property management - Guidance

ISO 56006:2021           Tools and methods for strategic intelligence management - Guidance

ISO 56007:2023           Tools and methods for managing opportunities and ideas - Guidance

ISO 56010:2023           Illustrative examples of ISO 56000



Integrated Management System Standards (2)


PAS 99:2012                   Specification of common management system requirements as a framework for integration

IUMSS:2018                    The Integrated Use of Management System Standards (IUMSS)

IT Service Management Standards (11)


ISO 20000-1:2018      Part 1: Service management system requirements

ISO 20000-2:2019      Part 2: Guidance on the application of service management systems

ISO 20000-3:2019      Part 3: Guidance on scope definition and applicability of ISO 20000-1

ISO 20000-4:2010      Part 4: Process reference model

ISO 20000-5:2022      Part 5: Implementation guidance for ISO 20000-1

ISO 20000-6:2017      Part 6: Requirements for bodies providing audit and certification of service management systems

ISO 20000-7:2019      Part 7: Guidance on the integration and correlation of ISO 20000-1:2018 to ISO 9001:2015 and ISO 27001:2013

ISO 20000-9:2015      Part 9: Guidance on the application of ISO 20000-1 to cloud services

ISO 20000-10:2018   Part 10: Concepts and vocabulary

ISO 20000-11:2021   Part 11: Guidance on the relationship between ISO 20000-1 and service management frameworks ITIL

ISO 20000-12:2016   Part 12: Guidance on the relationship between ISO 20000-1 and service management frameworks CMMI-SVC

Knowledge Management Systems (10)


ISO 10164-16:1997   Open Systems Interconnection - Systems Management: Management knowledge management function - Part 16

ISO 13054:2012           Knowledge management of health information standards

ISO 13131:2021           Health informatics - Telehealth services - Quality planning guidelines

ISO 18062:2016           Health informatics - Categorial structure for representation of herbal medicaments in terminological systems

ISO 18790-1:2015      Health informatics - Profiling framework & classification for Traditional Medicine informatics standards development - 

                                                 Part 1: Traditional Chinese Medicine

ISO 27550:2019           Information technology - Security techniques - Privacy engineering for system life cycle processes

ISO 30145-2:2020      Information technology - Smart City ICT reference framework - Part 2: Smart city knowledge management framework

ISO 30145-3:2020      Information technology - Smart City ICT reference framework - Part 3: Smart city engineering framework

ISO 30401:2018           Requirements

Key Performance Indicators, Best Practices, and Statistics (4)


ISO 18828-4:2018      Part 4 Key performance indicators (KPIs) in production planning processes

ISO 21246:2019           Information and documentation - Key indicators for museums

ISO 18461:2016           International museum statistics

BS EN 15221-7:2012 Facility Management Part 7 - Guidelines for Performance Benchmarking

Occupational Health and Safety Management Systems (2)


ISO 45001:2018           Requirements with guidance for use

ISO 45003:2021           Psychological health and safety at work - Guidelines for managing psychosocial risks

Quality Management Systems Standards (15)


ISO 9000:2015              Fundamentals and vocabulary

ISO 9001:2015              Requirements

ISO 9002:2016              Guidelines for the application of ISO 9001:2015

ISO 9004 2018              Quality of an organization - Guidance to achieve sustained success

ISO 10845-1:2020      Construction procurement - Part 1 - Processes, methods and procedures

ISO 10004:2018           Guidelines for Monitoring and Measuring

ISO 10005:2018           Guidelines for Quality Plans

ISO 10006:2003           Guidelines for competence management and people development

ISO 10013:2021           Guidance for documented information

ISO 10015:2019           Guidelines for competence management and people development

ISO 10018:2020           Guidelines on people involvement and competence

ISO 13485:2016           Medical devices - Quality management systems - Requirements for regulatory purposes

ISO 18091:2019           Guidelines for the application of ISO 9001 in local government

ISO 22163:2017           ISO 9001 2015 and particular requirements for application in the rail sector

ISO 29001:2020           Petroleum, petrochemical and natural gas industries Sector-specific quality management systems -
                                                       Requirements for product and service supply organizations

Risk Management Standards (4)


ISO 31000:2018           Guidelines Standard

ISO 31010:2019           Risk assessment techniques

ISO 31022:2020           Guidelines for the management of legal risk

ISO 31050:2023           Guidelines for managing an emerging risk to enhance resilience

Road Traffic Safety Management System (2)


ISO 39001:2012           Requirements with guidance for use

ISO 39001/Amd 1:2024 Amendment 1: Climate action changes

Security Management Systems (4)


ISO 8102-20:2022      Electrical requirements for lifts, escalators and moving walks - Part 20 Cybersecurity

ISO 18788:2015           Management system for private security operations

ISO 28000:2022           Requirements

ISO 28001:2007           Security management systems for the supply chain


For additional information on ISO standards, go to https://www.iso.org.

For information on PAS and BS standards, go to https://www.bsigroup.com

Cookies & Privacy

© 2024 el Fadl Management Consultancy Services.  All rights reserved.