ISO 27001 Controls Handbook: Implementing and auditing 93 controls to reduce information security risks

Implementing ISO 27001 can be a bit daunting, especially when you get to the controls. This book is a great resource. It will get you thinking and you may even find that your organization is already doing some of the required activities. If you've already implemented ISO 27001, it will help you improve your ISMS. I especially liked how the controls were linked to other controls, as there is a good amount of overlap in these activities. At the end of each control chapter, you'll see questions that an auditor might ask to determine compliance. These are very helpful as well and will get you thinking about what you can provide as evidence during certification audits.