Jump to navigation

ISO27001/ISO27002 A Pocket Guide, Second Edition

Now covering ISO27001:2013, this  ISO27001/ISO27002 pocket guide gives a useful overview of two important information security standards.
ISO27001/ISO27002 A Pocket Guide

Protect your organisation’s information assets using ISO27001:2013

Information is one of your organisation’s most important resources. Keeping that information secure is therefore vital to your business. This handy pocket guide is an essential overview of two key information security standards that cover the formal requirements (ISO27001:2013) for creating an Information Security Management System (ISMS), and the best-practice recommendations (ISO27002:2013) for those responsible for initiating, implementing or maintaining it.

Furthering the objectives of your organisation

Information security means much more than a technology solution, and requires buy-in from senior managers and the collaboration of all staff in the organisation. For this reason, ISO27001 is not a one-size-fits-all solution, nor is it designed to be a static, fixed entity. By looking at ISO27001 and ISO27002 together, this pocket guide gives a wider view of what it means to implement an ISO27001 ISMS.

Creating an ISMS based on ISO27001/ISO27002 will help you to:

  • improve efficiency by having systems and procedures in place, enabling you to focus more on your core business
  • protect your information assets from a wide range of cyber threats such as criminal activity and fraud, user errors, outside attack, insider compromise and system failure
  • manage risk systematically and put in place a plan to eliminate or reduce cyber threats to your organisation
  • prepare for the worst, as ISO27001 requires you to monitor information security events, enabling earlier detection of threats or processing errors, and faster resolution.

Completely up to date with the latest 2013 release of ISO27001, ISO27001/ISO27002: A Pocket Guide covers:

  • the ISO/IEC 27000:2013 family of information security standards
  • background to the standards certification process
  • the ISMS and ISO27001:2013
  • specification vs. code of practice
  • documentation and records
  • management responsibility
  • policy and scope
  • risk assessment
  • implementation
  • continual improvement.

Buy this pocket guide and start securing your information assets today

Contact us if you are looking for the ISO27001:2005 edition.

About the author:

Alan Calder is the Founder and Executive Chairman of IT Governance Ltd, an information, advice and consultancy firm that helps company boards tackle IT governance, risk management, compliance and information security issues. He has many years of senior management experience in the private and public sectors.

Next step to certification?

You can arrange for an independent audit of your ISMS against the specifications of ISO27001 and, if your ISMS conforms, eventually achieve accredited certification. We publish a range of ISMS documentation toolkits and books (such as Nine Steps to Success), to help you do this.

To hear about new titles and exclusive offers from IT Governance Publishing, sign up and select 'Books' from the New Products options.

Authors: Alan Calder
Publishers: IT Governance Publishing
Format: Adobe eBook
ISBN13: 9781849285230
Pages: 78
Published: 10 Oct 2013
Availability: Now available
Format: ePub
ISBN13: 9781849285247
Pages: 78
Published: 03 Nov 2008
Availability: Now available
Format: Kindle
ISBN13: 9781849285254
Pages: 78
Published: 30 Oct 2008
Availability: Now available
Format: Softcover
ISBN13: 9781849285223
Pages: 86
Published: 03 Oct 2013
Availability: In Stock
Product Rating: (0.00)   # of Ratings: 0   (Only registered customers can rate)

There are no comments for this product.



People who bought this also bought

Your basket:

0 items
£0.00 (GBP)
Your shopping cart is currently empty.
+44 (0) 845 070 1750
live chat support software