Information Security is emerging as another profession emerging from Information Technology. There are many risks associated with our information assets and these must be managed accordingly in terms of risk management principles. This guide is helpful for professionals and organizations that want to be certified under ISO 27001. ISO 27001 is an international standard against which an organization can be certified.