In line with the new edition of ISO/IEC 27001, this book provides guidance on the requirements specified in the ISMS standard ISO/IEC 27001:2013.
This book 'Guidelines on Requirements and Preparation for ISMS Certification based on ISO/IEC 27001' gives help in understanding and using the new management system requirements, the adoption of the new common management system specification (applicable to all ISO management system standards), the new references and definitions, and additional information about the latest developments regarding certification criteria and other related standards developments.
Discover industry accepted best practice methods for providing and demonstrating evidence required by an assessment auditor so you are fully prepared.
This book provides guidance on the complete “life cycle” of ISMS processes and activities required to establish, implement, monitor and continually improve a set of management controls and processes to achieve effective information security.
It explains the transition from the old to the new edition and this will help those involved in certification audits, both ISMS implementers and ISMS auditors.
The book is applicable to organizations of any size, government departments and agencies, certification and accreditation bodies, training organizations, academic institutions, implementers, auditors, consultants, trainers and lecturers.
Edward Humphreys (Chartered Fellow of the BCS - FBCS CITP, CISM) has been an expert in the field of information security and risk management for more than 35 years. During this time, he has provided consultancy to major international companies (Europe, North/South America and Asia) and has worked for many years as senior advisor to the European Commission. He is conveyor of the ISO/IEC working group that is responsible for the development and maintenance of the family of ISO/IEC 27001 ISMS standards.
He was the editor of several of the earlier versions of several of these ISMS standards. He is the Founder of the ISMS International User Group and the International Register of ISMS Certificates. Edward teaches as a visiting professor at various universities around the world and in 2002 he was honoured with the Secure Computing Lifetime Achievement Award for his achievements on the internationalisation of the ISMS standards and ISMS certification.
2 Essence of Information Security
3 Information Security Management System (ISMS)
4 ISMS Requirements
5 ISMS Certification
Other information security books you might be interested in...
From a more detailed understanding of the new standard to guidelines on implementation, certification and audits, we have a number of books to help you make your transition.