Note-to-self: ISO27001 & ISO27002 downloads & tools

Just a quick note if you are looking in to ISO27001 documents, to implement IT security in a best-practices-way, bookmark these:

• the official ISO shop for the ISO documents (all of them) : https://www.iso.org/store.html
• ISO\IEC 27001 | Information Security Management Systems Requirements: https://trofisecurity.com/assets/img/iso27001-2013.pdf
• ISO\IEC 27002 | Code of Practice for Information Security Controls: https://trofisecurity.com/assets/img/ISO-IEC_27002-.pdf

ISO27001 specific material

• http://www.iso27001security.com/
• Toolkit with a lot of templates and handy material at : http://www.iso27001security.com/html/toolkit.html

BTW: there is a very interesting GDPR-ISO27001 mapping example/exercise published on the ISO27001Security.com website: GDPR-ISO27k mapping

PCI-DSS

And as a surplus, have a read of the PCI-DSS, aka the ISO27001 for Banks

• https://www.pcisecuritystandards.org/document_library

Check the free download section of the ISO standards organization at: ffwd2.me/FreeISO

(update: 2022-04-02)

And more

#ICYMI, check these online fully accessible + freely downloadable ISO standards, relevant for information security, privacy & data protection