BS PD 3004:2002

This guide includes the information security management system (ISMS) control requirements that should be addressed by organizations considering certification according to BS 7799-2:2002. The guide considers each of the controls in BS 7799-2:2002 in 2 different ways. Implementation guidance: describing what needs to be considered to fulfil the control requirements when implementing the controls from BS 7799-2:2002, Annex A. This guidance is aligned with ISO/IEC 17799:2000, which gives advice on the implementation of the BS 7799-2 controls. Auditing guidance: describing what should be checked when examining the implementation of BS 7799-2:2002 controls to ensure that the implementation covers the essential ISMS control requirements.Cross References: ISO/IEC 17799:2000*BS 7799-2:2002*Also available as part of KIT 50.