Specialist Services and Solutions

Books, Standards, Tools, and Distance Learning
for IT Governance, Risk Management,
Compliance and Information Security

ISO 27001 (ISO27001) Standard

Quick Links:

• What is ISO 27001?
• Achieving ISO 27001 certification
• Protect yourself against Cyber Threats and Data Breaches
• ISO 27001: IT Governance Products & Services
• ISO27001 Training
• More information

What is ISO 27001?

ISO 27001 (part of the ISO 27000 family of standards) is the best-practice specification for an Information Security Management System (ISMS). ISO 27001 sets out specific requirements for which an organisations ISMS can be audited and certified.

If you’re new to ISO 27001, we recommend:

• All Three ISMS Standards – Official ISMS standards, including ISO 27001, ISO 27002 and BS 7799-3
• Nine Steps to Success – Provides practical guidance to achieving ISO 27001
• The Case for ISO 27001 – Outlines the case for ISO 27001 and how it will safeguard your information
• IT Governance: A Manager’s Guide to Data Security and ISO 27001/ISO 27002 – This is THE manual for implementing an ISO 27001 ISMS as it details how to design, implement and deliver an ISMS that complies with ISO 27001.

Achieving ISO 27001 Certification

Achieving ISO 27001 can be a complex and time-consuming project. The documentation that is necessary to create a conforming ISMS can be up to 1,000 pages and then there is the ‘how to do it’ issue - there is a lot of learning to get the documentation formulae and process working effectively. This takes up a lot of time, resources and management implications.

Achieving ISO 27001 Certification can be simplified. There are a number of toolkits out there that provide all the pre-written documents you need which can be tailored to your organisation. They are often cheaper than one day’s consultancy fee and enables you to make you your own expert.

We recommend:

• Standalone ISO 27001 ISMS Documentation Toolkit – Provides all the policies, procedures, templates and guidance to keep you in line with the ISO 27001 standard.

Protect yourself against Cyber Threats and Data Breaches

A lack of a secure ISMS can leave you open to vulnerabilities such as cyber threats and data breaches. If you suffer either of these, you could be liable to pay hefty fines and suffer significant brand damage which would result in a loss of trust between you and your customers/clients.

Recommended reading:

• CyberWar, CyberTerror, CyberCrime - Understand the risks of cybercrime and learn what measures you and your business should take
• Cyber Risks for Business Professionals: A Management Guide – Details the origins of cyber risks and develops strategies for their management

ISO 27001: IT Governance Products & Services

IT Governance EU is Europe’s one-stop-shop for ISO 27001. The website is denominated in Euros and ships from a Benelux warehouse, meaning fast and cost-effective shipping for all EU residents. We will help you identify and access a wide range of ISO 27001 related information, advice, books & tools.

• View our entire ISO 27001 range here >>

ISO 27001 Training

IT Governance EU has a wide range of ISO 27001 training courses. These training courses are led by experts in the ISO 27001 field, and provide comprehensive information on specified areas. Although held in London and Manchester (UK), we offer offer help in finding appropriate hotels, close to the training venue. Alternatively, we also offer in-house training, anywhere in the world.

Read more information about our training courses.

The ISO 27001 training courses we offer are:

• Information Security Foundation based on ISO/IEC 27002
• ISO27001 Certified ISMS Foundation Training Course
• ISO27001 Certified ISMS Internal Auditor Training Course
• ISO27001 Certified ISMS Lead Auditor Training Course
• ISO27001 Certified ISMS Lead Implementer Masterclass

More information

For more information on ISO27001 and other related areas, please see the relevant topic pages listed below:

• Information Security >>
• Internet Security >>