Information Governance Limited - Supplier of Proteus Enterprise security risk management software for compliance with ISO/IEC 27002 and related information security, risk management and IT governance standards. ISO 27001 Security - Up to date information and news about the ISO/IEC 27000-series information security standards, with discussion forum, FAQ, implementation support info and links to other security standards. ISO 27000 Toolkit - Commercial package containing the ISO/IEC 27001 and 27002 standards plus supporting materials such as policies and a glossary. Praxiom Research Group - Plain English descriptions of ISO/IEC 27001, 27002 and other standards, including a list of the controls. Wikipedia: ISO/IEC 27000-series - Open encyclopedia entry for the ISO/IEC 27000 family of information security management system standards, with links to pages on several standards in the family. ISO27k Implementers' Forum - Google Groups discussion forum for those actively implementing the ISO/IEC 27000-series standards. NERC Reliability Standards - Information on the development of cyber and information security standards with emphasis on reliability. The ISO 27000 Directory - Information covering the ISO/IEC 27000 series of standards, including updates and consultants directory Common Criteria - Provides the Common Criteria for Information Technology Security Evaluation. Also published as ISO/IEC 15408-1. Yahoo! Groups iso-27001 - Discussion forum for ISO/IEC 27001 and 27002 Jake Smith Consulting - Consultant specialising in helping organisations achieve ISO/IEC 27001 compliance and certification. Shared Assessments - Questionnaire and review process used to assess business partners' information security status using ISO/IEC 27002, COBIT, PCI-DSS and others. IT Governance Limited - Information, books and case studies on ISO/IEC 27001 and the other ISO27k standards NIST Special Publication 800-53 - Recommended Security Controls for Federal Information Systems has a similar scope to ISO/IEC 27002 and cross-references the standard. ISO/IEC 27000:2014 - Introduces the ISO/IEC 27000 series of standards and provides a common glossary of information security terms used in the standards. Free download, 2014 edition. [ZIP file containing PDF] SecuraStar - An ISO 27001 consulting firm specializing in Information Security Management Systems (ISMS). ISMS Manager Software - Software supporting an Information Security Management System Information Security & Business Continuity Academy - Training and consultancy support services for those implementing ISO/IEC 27001 and BS 25999-2 ISMS Online - Cloud service to support implementing, maintaining and improving your ISO/IEC 27001 information security management system.