ISO27001/ISO27002: A Pocket Guide

  • 1h 38m
  • Alan Calder
  • IT Governance
  • 2018

Information security means much more than a technology solution, and requires buy-in from senior managers and the collaboration of all staff in the organization. For this reason, ISO27001 is not a one-size-fits-all solution, nor is it designed to be a static, fixed entity. By looking at ISO27001 and ISO27002 together, this pocket guide gives a wider view of what it means to implement an ISO27001 ISMS.

In this Audiobook

  • Chapter 1 - The ISO/IEC 27000 Family of Information Security Standards
  • Chapter 2 - Background to the Standards
  • Chapter 3 - Specification versus Code of Practice
  • Chapter 4 - Certification Process
  • Chapter 5 - The ISMS and ISO27001
  • Chapter 6 - Overview of ISO/IEC 27001—2013
  • Chapter 7 - Overview of ISO/IEC 27002—2013
  • Chapter 8 - Documentation and Records
  • Chapter 9 - Management Responsibility
  • Chapter 10 - Process Approach and the PDCA Cycle
  • Chapter 11 - Context, Policy and Scope
  • Chapter 12 - Risk Assessment
  • Chapter 13 - The Statement of Applicability (SOA)
  • Chapter 14 - Implementation
  • Chapter 15 - Check and Act
  • Chapter 16 - Management Review
  • Chapter 17 - ISO27001 Annex A
SHOW MORE
FREE ACCESS

YOU MIGHT ALSO LIKE

Audiobook ISO 50001: A Strategic Guide to Establishing an Energy Management System
Book Risk Management and ISO 31000: A Pocket Guide
Book ISO/IEC 27001:2022: An Introduction to Information Security and the ISMS Standard