Part 1: Setting the Stage – Definitions, Concepts, Principles, Standards, and Certifications
Part 1, encompassing Chapter 1 and Chapter 2, is the cornerstone of this book, setting the scene with an exploration of information security’s fundamental principles and the ISO 27001 standard. Chapter 1 explains the basics of information security – confidentiality, integrity, and availability – and introduces the ISMS framework. Chapter 2 builds on this foundation by examining the PDCA process model integral to ISO 27001, providing a SWOT analysis of ISMS implementation, and underscoring the importance of accreditations and certifications. This section lays a robust groundwork for a comprehensive understanding of the ISO/IEC 27001/27002 standards.
This part has the following chapters:
- Chapter 1, Foundations, Standards, and Principles of Information Security
- Chapter 2, Introduction to ISO 27001