Author: Dr David Brewer
ISBN No: 978 0 580 82165 3
Review date: 13/06/2026
No of pages: 141
Publisher: British Standards (BSi)
Publisher URL:
http://shop.bsigroup.com/en/ProductDetail/?pid=000000000030279462
Year of publication: 05/11/2013
Brief:
ISO/IEC 27001:2013 focuses on specific recommendations to help you establish your own Information Security Management System
price
£27
ISO/IEC 27001:2013 focuses on specific recommendations to help you establish your own Information Security Management System (ISMS), monitor its performance and implement necessary improvements where necessary.
The new standard has been written using the high level structure that will be common to all new management system standards. This will allow easier integration when implementing more than one management system within your organization.
This standard is less prescriptive, allowing greater flexibility on how requirements are satisfied, thereby giving organizations greater freedom to implement requirements in a manner best suited to them.
This book serves as a basic introduction to ISO/IEC 27001:2013 and acts as a straight-forward guide to implementation. It includes a practical, easy to use assessment/risk treatment method that delivers results directly expressed in business meaningful terms.
The book is aimed primarily at people are looking for straight-forward overview of the standard and how to implement it. You can be new to the sector, new to the job, or new to the standard โ this useful pocket guide has all the information you need to get you started.
The guidance in this book is applicable to a wide range of differing ISMS implementations appropriate to SMEs as well as much larger organisations
Dr. David Brewer was one of the first consultants to advise the British Government on information security matters, providing assistance to establish the first ever computer security evaluation facilities and evaluation criteria, and is a a co-author of the original ISMS standard, BS 7799 Part 2.
He is now an active member of the UK delegation to ISO JTC 1 SC27 WG1, which is responsible for the IS27000 family of standards; and is co-editor for the revision of ISO/IEC 27004 (Measurements). He is well known for his work in rolling out ISO/IEC 27001 to the whole of the Civil Service in Mauritius, which is an exemplar of his ISMS implementation methodology, and his ability to train people to train others.
