IT Governance, ISO 27001 ISO 17799 and BS 7799

IT Standards

Take your choice of ISO27001 & IT Standards, as downloadable pdf or hardcopy (despatched same day by mail), for the following standards:

ISO standards

ISO 9000 Series of Standards (Quality Management Systems). ISO 9001 is the original international quality management system specification. Fundamentals & Vocabulary (PDF download), Requirements (PDF download), Performance Improvement (PDF download)
ISO 14001 (Environmental Management Systems Standards). ISO 14001, which is used by organisations all over the world, is also deployed as part of a Green IT initiative. PDF download, or hardcopy version
ISO 18028 (Network Security Management). ISO 18028 is a five part standard for network security. Network Security Management (hardcopy), Network Security Architecture (hardcopy), Securing Communications Between Networks Using Security Gateways (hardcopy), Securing Remote Access (hardcopy), Securing Communications Across Networks Using Virtual Private Networks (hardcopy)
ISO/IEC 19770-1:2006 (Software Asset Management Processes). Software asset management is a key part of IT service and security management, and copyright compliance. PDF download, or hardcopy version
ISO/IEC 20000:2005 - Parts 1 and 2 (IT Service Management). BS 15000 has become ISO/IEC 20000:2006, which is used to ensure that IT service management and ITIL efforts are capable of third party audit and certification. PDF download, or hardcopy version
ISO/IEC 24762:2008 (Disaster Recovery Service Guidelines): hardcopy by mail
ISO/IEC 27001: 2005 (Information Security - ISMS - ISO 27001). ISO/IEC 27001 is the ISMS specification, the certification standard. The standard is dual numbered BS 7799-2:2005. PDF download, or hardcopy version
ISO/IEC 27002:2005 (ISO/IEC 17799:2005). ISO/IEC 17799:2005 has now been re-numbered ISO/IEC 27002:2005. ISO/IEC 17799:2005 and ISO/IEC 27002:2005 are identical. PDF download, or hardcopy version
ISO/IEC 27005: 2005 (Information Security Risk Management). ISO/IEC 27005 provides guidelines for information security risk management. It replaces ISO/IEC 13335, which has now been withdrawn. PDF download, or hardcopy version
ISO/IEC 27006: 2007 (ISMS Certification Bodies). ISO/IEC 27006:2007 supports the accreditation of certification bodies providing ISMS certification. PDF download, or hardcopy version
ISO/IEC 38500:2008 (Corporate Governance of ICT). ISO/IEC 38500 is the new standard (code of best practice) for IT governance, drawn from the Australian standard AS8015:2005. PDF download, or hardcopy version

ISO/IEC Standards kits

Combined ISO/IEC 27001 & 27002 standards kit. This specially priced kit contains copies of both ISO 27001 and ISO 27002 (ISO 17799). PDF download
All 3 ISMS Standards (ISO 27001, ISO 27002, ISO 27005). The International Standards Kit contains all three international information security standards: ISO/IEC 27001:2005, ISO/IEC 27002:2005 (ISO/IEC 17799:2005) and ISO/IEC 27005:2008. PDF download

BS standards

BS 7799-3:2006 (Information security risk assessment). Risk assessment is fundamental to developing an ISMS that meets the requirements of ISO 27001:2005 (BS7799-2). PDF download, or hardcopy version
BS 7858 (Screening Individuals). Security Screening of Individuals hardcopy
BS 25999 (Business Continuity Management). PAS 56, for business continuity, has been withdrawn and replaced by BS 25999, which is a two part standard for Business Continuity Management. PDF download, or hardcopy version
ISO27001, ISO 27002/ ISO17799 and BS7799-3 (BSI Standards Kit). Contains the international information security standards that you will need if you are adressing information security as well as the British Risk Management Standard. PDF download, or hardcopy version

ISMS Toolkit

ISO27001 Info Security Comprehensive Toolkit for ISO27001 Certification
Creating an Information Security Management System for the first time can be a difficult and burdensome task. But when you use these IT Governance books and tools to help you set-up, you will receive unique guidance and support for your business or organization. Risk assessment is critical to effective deployment of an ISO 27001 Information Security Management System (ISMS), and this toolkit meets the requirements of every organization that recognises that the key steps to accredited certification are a repeatable risk assessment process and appropriate documentation.

The Complete ISO27001 ISMS toolkit comprises of:

Documentation Toolkit: a CD-Rom with nearly 400 densely packed pages of fit-for-purpose policies and procedures.
The Manager's Guide to Data Security and BS7799/ISO17799 (soft cover) 3rd Edition
vsRisk™- the Definitive ISO 27001: 2005-Compliant Information Security Risk Assessment Tool
Hard copies of all three of the information security standards: ISO/IEC 27002:2005 (ISO/IEC 17799 2005), ISO/IEC 27001:2005, BS7799-3:2006
You will also receive a unique drafting support service and 12 months of automatic updates.

Buy the ISO27001 Info Security Comprehensive Toolkit for ISO27001 Certification

ITIL Lifecycle Publication Suite (ITILv3 - Complete Library)

The ITIL complete library takes a lifecycle approach to guidance, as opposed to organising according to IT delivery sectors. The ITIL Lifecycle Publication Suite (Complete Library) contains five titles, which are designed to be read together, and includes:

Buy the ITIL Lifecycle Publication Suite today and save 29% against the cost of purchasing all the titles individually. This suite is also available in electronic pdf and annual subscription formats.

Risk Management to ISO27001/NIST

Ensure that you conduct an effective information security risk assessment that is in line with ISO 27001 by purchasing ^vsRisk™ Risk Assessment Tool

The ^vsRisk™ Risk Assessment Tool:

Automates and delivers an ISO/IEC 27001-compliant risk assessment
Can assess confidentiality, integrity and availability for each of business, legal and contractual aspects of information assets, as required by ISO 27001
Comprehensive best-practice alignment:Supports ISO 27001 and ISO/IEC 17799; complies with BS7799-3:2006; conforms to ISO/IEC TR 13335-3:1998; conforms to NIST SP 800-30, complies with the UK's Risk Assessment Standard;
Wizard-based approach simplifies and accelerates the risk assessment process;
Integrated, regularly updated, BS7799-3 compliant threat and vulnerability databases,
Integrates with the ISMS Documentation Toolkit (integration templates supplied seperately to all Documentation Toolkit purchasers)

MCSE 2003 Security Distance Learning

This computer-based training course will give you a full MCSE qualification PLUS the coveted MCSE security specialization at less than half the cost of a standalone MCSE in a classroom - and you get to learn at your own pace, in your own time, with an immediate start - and you can fit it around your day-to-day work.

ISO27001 US Toolkit (CD-Rom)

Accelerate your ISO27001 project and develop an ISO27001-compliant Information Security Management System (ISMS) with the help of this toolkit.

Prince2 Distance Learning

If you are looking for a flexible route to achieving either the PRINCE2 Foundation or Practitioner certificates distance learning is often the most convenient route. These PRINCE2 distance learning courses provide a straightforward route to becoming certified to PRINCE2 Foundation or Practitioner status in your own time and at your own pace:

PRINCE2 Passport Foundation: Distance Learning CD (Contains interactive training course), PRINCE2 Manual, Understanding P2, Prince2 Examination Assistant, Foundation Exam, Folder & Bag.
PRINCE2 Passport Practitioner: Distance Learning CD (Contains interactive training course), PRINCE2 Manual, Understanding PRINCE2, Prince2 Examination Assistant, Foundation & Practitioner exams, Folder & Bag.
PRINCE2 Passport Plus: Distance Learning CD (Contains interactive training course), P2 Manual, Understanding P2, Passing the PRINCE2 Exams, PRINCE2 Examinations Assistant, 1-day Revision Event, Foundation & Practitioner exams, Folder & Bag