• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 252
  • Last Modified:

ISO 27K Documents and resouces

Hi..
I was in search of resources and documents for building Standard Security program.  At present I am not looking for ISO 27K certifications, but to make very standard documentation set , which can be used for ISO certification purpose. I found a website  : http://www.iso27001standard.com/. will provide documents, Templates and Tutorials.
Any Similar resources available less expensive..
Please help..
0
anishpeter
Asked:
anishpeter
  • 2
  • 2
  • 2
  • +1
2 Solutions
 
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
Go for ISACA or SANS training (boot camp style for security manager) and you will get all the tools.  ISO 27001 for Information Security Management and it will cost you than buying a book but you get of it is tools, certification and confidence of what you are doing is the right way.
0
 
anishpeterAuthor Commented:
I understand the requirement of Certification. But Certification cannot help on Documents and Tools. Please help on the online resources (Free/paid) that have full archive of resources.
0
 
Mohammed KhawajaManager - Infrastructure:  Information TechnologyCommented:
ISACA training does help with tools/documentation as you get templates for different items such as policies, standards, procedures, etc.
0
Network Scalability - Handle Complex Environments

Monitor your entire network from a single platform. Free 30 Day Trial Now!

 
anishpeterAuthor Commented:
Thanks for the comment. Please check it is applicable for the course conducted by PECB for ISO27001.
0
 
btanExec ConsultantCommented:
You can catch my past EE posting on the template and do note that 27001:2013 is latest compared to 27001:2005
the toolkit http://www.iso27001security.com/html/iso27k_toolkit.html from the community ...

we would identify an increase is mandatory control points. In 2005 they totaled 102 and in 2013 they will increase to 148. The pdf states the details going into the clauses, it has a nice table mapping of ISO/IEC 27001:2013 clauses to ISO/IEC 27001:2005. ...
http://www.experts-exchange.com/Security/Misc/Q_28615940.html
0
 
David Johnson, CD, MVPOwnerCommented:
0
 
btanExec ConsultantCommented:
ISACA is more of COBIT and the other training for CISA, CISM, CGEIT, CRISC etc not really towards iso27001 standard...
PECB is one of the known training school for it instead. bsigroup is another good candidate for ISO related  training, in India, and check out its resources
ISO/IEC 27001 resources

Please see supporting material that you may need for your ISO/IEC 27001 journey.
ISO/IEC 27001 Client manual (PDF)
ISO/IEC 27001:2013 Transition Guide (PDF)
ISO/IEC 27001 Mapping Guide (PDF)
CSA STAR Certification Client manual (PDF)
http://www.bsigroup.com/en-IN/ISOIEC-27001-Information-Security/Training-courses-for-ISO-27001/

Other resource to add on include
> (checklist handy in the phase and coverage) http://www.halkynconsulting.co.uk/a/2013/10/iso27001-compliance-checklist/
> (have sample but need to purchase for whole) http://www.iso27001templates.com/view-the-templates.html
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

KuppingerCole Reviews AlgoSec in Executive Report

Leading analyst firm, KuppingerCole reviews AlgoSec's Security Policy Management Solution, and the security challenges faced by companies today in their Executive View report.

  • 2
  • 2
  • 2
  • +1
Tackle projects and never again get stuck behind a technical roadblock.
Join Now