Vijay,
Just go to www.iso.org <http://www.iso.org/> , click on member sites. Never
waste your money on un-official sites. ISO membership is limited to
governments, and your government runs it's own web store. ISO documents are
priced equal to $1 US for each page of content (less front & back pages of
cover, TOC and index). Cheap documents have small value, the more expensive
contain more information. Compliance is met by implementing multiple
standards, each is unique to a specific set of tasks.
I strongly suggest you read the following to improve your billing rate.
ISO-15489-1 governing records retention practices (COSO standard for
calculating liability)
ISO-27001 (or 27002) for basics the high level of ISM
ISO-27006 requirements for certification of results
ISO guide 73 on risk management
I commend you for seeking the genuine answers inside the standards. I work
in both compliance and prosecution. Top-notch professionals don't says "it's
required" rather the professional will cite the page, paragraph and line
number for each point of complaince. Your project plan and engagement will
tick off each citation as the path to true compliance. This is how I
received more promotions and higher paying engagements than anyone else. The
word "should" indicates optional or suggested actions. The word "shall" is a
definate commandment which cannot be ignored. I've purchased of 30 sets of
assorted documents for my own development. The bottom of the download PDF is
watermarked with the buyers name.
ISACA holds all CISA's and candidates to the ethics clause which prohibits
you from violating ANY copyright. Every ISO document is copyrighted to ISO.
You are also obligated to report anyone in violation or facing losing your
own certification. Fortunately a real professional understands why real
CISA's would never compromise their reputation. The worst copyright
offenders are I.T. people who preach compliance, yet violate it themselves
for their own gain. Having a copy does not grant the right to use it - just
proves who is honest and who's dishonest. I use bookleg copies against the
possessor as evidence why I should be paid more and the other auditor should
be relieved of their duties. Works every time.
Warmest Regards
David Cannon
President, Author
CertTest Training Center - Home of Real Training Not Slideshows
99.4% Success rate. Hands-on Management Certification & Development
* PMI Project Management (PMP, CAPM)
* Business Continuity (CBCP)
* I.S. Security (CISSP, Security+)
* I.S. Auditor (CISA)
* U.S. National Security Agency (IAM Assessment, IEM Evaluation)
** Group training versions available from half day through five day.
Why is CertTest your Best Choice? www.CertTest.com/bestchoice.html
Open enrollment in Dallas, Las Vegas, Orlando and Onsite for groups
* Ask about our No cost Airfare and inclusive Hotel packages.
Worldwide (817) 410-8000
Toll free (888) 9-CERT-TEST [888-923-7883]
<http://www.certtest.com/> www.CertTest.com
This message and it contents are confidential and intended exclusively for
the designated recipient. If you have received this message in error, please
contact us immediately at <mailto:legal@certtest.com> legal@certtest.com.
Information contained in this email may not be distributed and may be
protected by copyright law.
