BS ISO/IEC 27002:2005 is the international standard for information security management, helping you to achieve legal compliance, industry reputation and stakeholder confidence. It outlines the general principles of designing, implementing, maintaining and improving data security. BS ISO/IEC 27002:2005 also includes practical guidelines for developing security standards and effective information management across your organisation. Compliance with the standard will allow you to put in place effective risk management and audit controls.