Sub-programs

Information Security Management Systems

We are the only internationally recognized accreditation body in Canada offering Information Security Management Systems accreditation, which is based on ISO/IEC 27006, the international standard for providing information security management systems audit and certification. As a pre-requisite, certification bodies must also be accredited to ISO/IEC 17021-1.

Organizations across industries and of all sizes implementing the ISO/IEC 27001 management systems standard to manage the security of their assets – such as financial information and intellectual property – often turn to SCC-accredited certification bodies for third-party oversight. Reasons include procurement eligibility requirements, regulatory compliance and competitive differentiation. The ISO/IEC 27001 standard is applicable for businesses of all sizes and can be easily integrated with other management systems standards, such as ISO 9001, due to its common structure.

We are signatories to the International Accreditation Forum (IAF) Multilateral Recognition Arrangement (MLA) for this management systems sub-program. This means that certification to ISO/IEC 27001 by SCC-accredited certification bodies is widely accepted internationally.

Why choose SCC

Get a quote

Accreditation documents and resources

Document Date	Document Title
2024-05-17	Accreditation Requirements - All Management Systems Accreditations
2024-05-17	Program Overview - Management Systems Accreditation Program
2024-05-17	Accreditation Requirements - Information Security Management Systems
2024-04-11	Accreditation Program Manual - Accreditation Services
2023-12-08	Policy on Accreditation Symbol Use
2022-12-05	Guidelines for Remote Assessments/Inspections

Bulletins (technical updates)

Bulletin number	Title
2024-19	IAF MD23:2023 Control of Entities Operating on Behalf of Accredited Management Systems…
2024-18	Transition arrangements for ISO/IEC 27006-1:2024
2024-17	Application of IAF MD 25 for the evaluation of conformity assessment schemes
2024-14	Overhauled Accreditation Program Overview
2024-13	IAF MD 28 for the Upload and Maintenance of Data on IAF Database (Certsearch)
2024-12	Incorporating climate change considerations into management system standards
2024-07	IAF MD 11:2023, Application of ISO/IEC 17021-1 For Audits of Integrated Management Systems
2024-04	IAF MD 1:2023, Audit and Certification of a Management System Operated by a Multi-Site Organization
2024-02	Announcing new IAF MD 25 Criteria for evaluation of Conformity Assessment Schemes
2024-01	IAF MD 7:2023 Harmonization of Sanctions and Dealing with Fraudulent Behaviour
2023-05	Transition to MD 26:2023 Transition Requirements for ISO/IEC 27001
2023-03	Updated Accreditation Services Program Overview
2023-01	Update on resuming on-site activities
2022-26	Publication: ISO/IEC 27002:2022
2022-25	ISO/IEC 27001:2022 transition and ISO/IEC 27002:2022 publication
2022-23	Updated Accreditation Services Program Overview
2022-21	Streamlining the Accreditation Process
2022-14	Updated Accreditation Services Program Overview
2022-13	Resuming on-site activities
2022-12	Updated Accreditation Services Program Overview
2022-09	MD 4:2022 Information and Communication Technology for Auditing
2021-01	Management Systems Update: Withdrawal of IAF MD 11:2019
2020-42	New issues of IAF ID 1 and ID 4
2020-39	Response to COVID-19
2020-34	Management Systems Update: withdrawal of IAF ID8

Explore more

Abstract and modern digital interface with checkmark

Steps to accreditation

Embark on accreditation or transfer to SCC with confidence. Our team supports your journey, providing personalized, customer-centric services for organizations of all sizes.

Learn more

Training

The SCC Learning Centre offers a range of public and tailor-made accreditation and standardization training courses. Our top-notch instructors are industry leaders who share their passion with Canadian and international participants.

Learn more

Find an accredited organization

Search our directory for accredited organizations that perform certification, testing, inspection and verification/validation. Accreditation means they are rigorously assessed based on internationally accepted criteria.