Massive ISO 2700X related materials

The Cyberwarzone community has provided an excellent source for ISO materials. The google document has ISO 27k related resources.

The International Organization for Standardization (French: Organisation internationale de normalisation, Russian: Международная организация по стандартизации, tr. Myezhdunarodnaya organizatsiya po standartizatsii), widely known as ISO, is an international standard-setting body composed of representatives from various national standards organizations. Founded on February 23, 1947, the organization promulgates worldwide proprietary, industrial, and commercial standards. It has its headquarters in Geneva, Switzerland.

 

ISO 27k Related Materials

Summary
 

  1. An Introduction to ISO 27001, ISO 27002....ISO 27008
  2. Insights into the ISO/IEC 27001 Annex A
  3. ISO 27001 / BS 25999 Free Downloads
  4. ISO 27001 Audit, Implementation and Certification
  5. ISO 27k Toolkit
  6. ISO27k & ISMS Links
  7. ISO/IEC 27001 - BSI interviews Henk de Vries
  8. ISO/IEC 27001 - BSI interviews Robert van Wessel
  9. ISO/IEC 27001: The future of infosec certification
  10. ISO/IEC FDIS 27001 Final Draft
  11. ISO 27001, ISO 27002 & ISO 17799 User Group
  12. ISO 27002 Framework for Today's Security Challenges
  13. Tackling ISO 27001: A Project to Build an ISMS
  14. The story of a football team and ISO 27001
  15. Welcome To The ISO 27001 And ISO 27002 Open Guide!
  16. What is ISO 27001?

Detailed

An Introduction to ISO 27001, ISO 27002....ISO 27008
http://www.27000.org/

The ISO 27000 series of standards have been specifically reserved by ISO for information security matters. This of course, aligns with a number of other topics, including ISO 9000 (quality management) and ISO 14000 (environmental management).

Insights into the ISO/IEC 27001 Annex A
http://www.gammassl.co.uk/topics/ics/27001annexAinsights.pdf

ISO/IEC 27001 is a specification for an Information Security Management System (ISMS). It contains an annex, Annex A, which catalogues a wide range of controls and other measures relevant to information security. At first view, it appears that all an organisation has to do is select the controls that it believes that it needs from this catalogue. However, there is a requirement to
carry out a risk assessment. The purpose of this is to identify the controls that are actually required.

ISO 27001 / BS 25999 Free Downloads
http://www.iso27001standard.com/en/free-downloads#

Various documents

ISO 27001 Audit, Implementation and Certification
http://www.youtube.com/watch?v=EuL11DL9vhE

ISO 27001 Audit, Implementation and Certification by TeamInfoSec

ISO 27001, ISO 27002 & ISO 17799 User Group
http://www.17799.com/modules.php?name=Forums

This forum is for general discussion of ISO 17799 and BS7799 / ISO 27001, and related issues

ISO 27002 Framework for Today's Security Challenges
http://www.youtube.com/watch?v=yRFMfiLbNj8

Organizations all over the world face an ever-increasing range of challenges around security. New government regulations, increasingly complex information environments and fast-changing threats all combine to make achieving adequate security seem like a no-win situation.

ISO 27k Toolkit
http://www.pmcgroup.biz/downloads_files/ISO27k_Toolkit_overview_and_contents_3v2.pdf

This document was created by the ISO/IEC 27001 and 27002 implementers belonging to the ISO27k Implementers Forum. It lists the items typically required to document an Information Security Management System (ISMS) suitable for certification against ISO/IEC 27001.

ISO27k & ISMS Links
http://www.iso27001security.com/html/links.html

Various resources offered by ISO 27001 Security

ISO/IEC 27001 - BSI interviews Henk de Vries
http://www.youtube.com/watch?v=pB68_UPIsBU

BSI and Rotterdam school of management, Erasmus university conducted a research study about ISO/IEC 27001 Information technology. Security techniques. BSI interviewed Henk de Vries who is one of the experts behind the study.

ISO/IEC 27001 - BSI interviews Robert van Wessel
http://www.youtube.com/watch?v=_XTSOqVfu84

BSI and Rotterdam school of management, Erasmus university conducted a research study about ISO/IEC 27001 Information technology. Security techniques. BSI interviewed Robert van Wessel who is one of the experts behind the study.

ISO/IEC 27001: The future of infosec certification
http://www.efortresses.com/refdocs/InformationSecurity.pdf

ISO/IEC certification allows organizations to build an effective Information Security Program that addresses current and future regulatory compliance requirements in a sustainable and cost-effective fashion.

ISO/IEC FDIS 27001 Final Draft
http://www.cmcq.com.cn/download/27001.pdf

This International Standard has been prepared to provide a model for establishing, implementing, operating,
monitoring, reviewing, maintaining and improving an Information Security Management System (ISMS). The
adoption of an ISMS should be a strategic decision for an organization.

Tackling ISO 27001: A Project to Build an ISMS
http://www.iso27001security.com/GIAC_GCPM_gold_henning.pdf

This paper addresses the implementation of an ISO 27001 ISMS using the Project Management Body of Knowledge known as the PMBOK Guide.

The story of a football team and ISO 27001
http://www.youtube.com/watch?v=6nYeGlhEtXY&feature=related

A short video that shows how even a football team can implement ISO 27001dispelling the myth that ISMS such as ISO 27001 is only for IT or related companies.

Welcome To The ISO 27001 And ISO 27002 Open Guide!
http://iso-17799.safemode.org/

This site is a public 'open' initiative, known as a 'wiki', and is designed to document ISO27002 (ISO17799) and ISO27001, inclusive of implementation and certification issues. It is a public access site, meaning that YOU can contribute and assist.

What is ISO 27001?
http://www.youtube.com/watch?v=AzSJyfjIFMw&feature=related

Learn the basics of information security and how to use ISO 27001 as a framework for managing information security management system.
 

Published by:

CWZ's picture

Name
Reza Rafati

Information
I am the founder of Cyberwarzone.com and I focus on sharing and collecting relevant cyberconflict news., The goal of Cyberwarzone is to provide the world a portal with global cyberwar information. The effort in getting this cyberwarfare information is hard. But as the internet is growing we need to get an global cyberwar & cybercrime monitoring system., By the people and for the people. We will be gathering information about Cybercrime, Cyberwarfare and hacking. LinkedIn: http://www.linkedin.com/pub/reza-rafati-%E2%99%82/1a/98b/197

Country
The Netherlands

My website
Cyberwarzone.com

Twitter:
http://twitter.com/#!/cyberwarzonecom