This publication has been completely revised to bring it in line with the new 2005 editions of BS ISO/IEC 17799 and BS ISO/IEC 27001. Includes an ISMS process check and a gap analysis workbook. This Guide is intended primarily for use by organizations seeking to prepare for certification to BS ISO/IEC 27001 (BS 7799-2). For this purpose it is recommended that the pre-certification assessment is best carried out under the supervision of the person responsible for information security in the organization or by internal audit staff. System developers may also find it a useful reference document when considering the security aspects of new systems.