Copyright in these two information security standards, copies of which can – and should – be purchased from national standards bodies or from www.itgovernance.co.uk/standards.aspx, is owned by their publishers. This pocket guide is not a substitute for acquiring and reading the standards themselves and every reader of this pocket guide should obtain copies for themselves.
This pocket guide contains many references to, and summaries of, material that is more comprehensively available in the published standards; it is intended to be a handy reference tool that contains in one place some of the key information that those dealing with the standards and related issues might need. It does not contain enough information for anyone to implement, or audit implementation of, a management system based on either of these standards. It is also a pocket guide to, not a comprehensive manual1 on, implementing ISO27001.
1 If you are looking for a comprehensive ISO27001 implementation manual, one is available at www.itgovernance.co.uk/shop/p-772.aspx.