ISO27000 TOOLKIT CONTENTS
The latest version of both ISO27002 and ISO 27001
A comprehensive set of hundreds of ISO27002 compliant security policies.
Explaining the background and history of ISO27002 & ISO 27001
A whole series of items to help address Section 11
An overview of the path to certification
A series of security audit question modules to help address section 12
An extremely comprehensive glossary to cut through the jargon
A leading business impact analysis questionnaire
The ISO27000 Toolkit
A comprehensive starter and support kit for ISO27000, including ALL the above items.
Purchase & Download For
As risk analysis is such a central part of any ISMS, the toolkit includes a copy of the EzRisk desktop risk analysis system.This comprises a set of MS-Word documents to help you conduct a high level risk assessment exercise.
EzRisk adopts a 3 phase approach: Business Impact Analysis; Risk Assessment; Final Analysis. It provides four documents to guide this. The first is a BIA questionnaire to help identify potential impacts, and also determine which of the other questionnaires should be completed. The others reflect the CIA approach, with a questionnaire covering each of Confidentiality, Integrity and Availability. Each examines a range of threats at a high level.
It is intended that the completed questionnaires will be used to drive an assessment workshop, which will determine further actions (usually a full assessment of identified potentially exposed areas, or a dedicated workshop to examine certain issues in more depth).
Extract from the Introduction
Extracts from the BIA Questionnaire
Extract from the Availability Questionnaire
Extract from the Integrity Questionnaire
HOMEPAGE - CONTACT INFO - TOOLKIT PURCHASE
© Copyright 2013