BS ISO/IEC 27002:2005, BS 7799-1:2005,BS ISO/IEC 17799:2005 Information technology. Security techniques. Code of practice for information security management

What is it?

BS ISO/IEC 27002:2005 is the international standard for information security management, helping you to achieve legal compliance, industry reputation and stakeholder confidence. It outlines the general principles of designing, implementing, maintaining and improving data security. BS ISO/IEC 27002:2005 also includes practical guidelines for developing security standards and effective information management across your organisation. Compliance with the standard will allow you to put in place effective risk management and audit controls.

How does it work?

BS ISO/IEC 27002:2005 provides recommendations and guidance on meeting the international information security standard. This code of practice helps you to develop information security guidelines that are specific to your business and provides the foundation for your own management systems. The standard is not restricted by sector and outlines ways to achieve data security through robust storage and protections, as well as processing. The standard can be used to monitor and improve computer systems and the way you share information.

Who should buy it?

IT managers and team members
Those responsible for the overall management of the organization.
Contents of BS ISO/IEC 27002:2005 include:

  • Data Security
  • Data storage protection
  • Data processing
  • Computers
  • Management
  • Computer networks
  • Computer hardware
  • Computer software
  • Data transmission
  • Information exchange
  • Access

This code of practice may be regarded as a starting point for developing organization-specific guidelines. Not all of the controls and guidance in this code of practice may be applicable.

Furthermore, additional controls and guidelines not included in this standard may be required.

When documents are developed containing additional guidelines or controls, it may be useful to include cross-references to clauses in this standard where applicable to facilitate compliance checking by auditors and business partners.

Why BSI?

We are global, we’re independent and we’re trusted service provider to 80,000 businesses. We operate in 147 countries and are the number one certification body in the UK and US. We created 85% of our portfolio because we know standards and we know your business. We’re leaders and we can make you one too.


Back to Top