Tags
Language
Tags
March 2024
Su Mo Tu We Th Fr Sa
25 26 27 28 29 1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30
31 1 2 3 4 5 6

ISO 27001 Controls : A Guide to Implementing and Auditing

Posted By: readerXXI
ISO 27001 Controls : A Guide to Implementing and Auditing

ISO 27001 Controls : A Guide to Implementing and Auditing
by Bridget Kenyon
English | 2019 | ISBN: 1787781445 | 237 Pages | PDF | 1.3 MB

A must-have resource for anyone looking to establish, implement and maintain an ISMS.

Ideal for information security managers, auditors, consultants and organisations preparing for ISO 27001 certification, this book will help readers understand the requirements of an ISMS (information security management system) based on ISO 27001. Similarly, for anyone involved in internal or external audits, the book includes the definitive requirements that auditors must address when certifying organisations to ISO 27001.

The book covers:

- Implementation guidance - what needs to be considered to fulfil the requirements of the controls from ISO/IEC 27001, Annex A. This guidance is aligned with ISO/IEC 27002, which gives advice on implementing the controls;
- Auditing guidance - what should be checked, and how, when examining the ISO/IEC 27001 controls to ensure that the implementation covers the ISMS control requirements.

The implementation guidance gives clear descriptions covering what needs to be considered to achieve compliance against the requirements, with examples given throughout. The auditing guidance covers what evidence an auditor should look for in order to satisfy themselves that the requirement has been met. Useful for internal auditors and consultants, the auditing guidance will also be useful for information security managers and lead implementers as a means of confirming that their implementation and evidence to support it will be sufficient to pass an audit.

This guide is intended to be used by those involved in:

- Designing, implementing and/or maintaining an ISMS;
- Preparing for ISMS audits and assessments; or
- Undertaking both internal and third-party ISMS audits and assessments


If you want to support my blog, then you can buy a premium account through any of my files (i.e. on the download page of my book). In this case, I get a percent of sale and can continue to delight you with new books!