The replacement, in late 2005, of BS 77799 by the international information security management system standard ISO 27001 marks the coming of age of information security management.

In the first eight years that BS7799 existed as a standard against which organizations could gain an external certification, about 1,000 were successful, worldwide. This number doubled in the subsequent twelve months. With the internationalisation of BS 7799, that number will grow geometrically. This books looks at why organizations are increasingly turning to this information security management standard.

By far the most common drivers for organizations that have, historically, been successful in achieving BS 7799, “were commercial: to increase the confidence ...