@inbook{10.2307/j.ctt5hh4tx.8, ISBN = {9781849280495}, URL = {http://www.jstor.org/stable/j.ctt5hh4tx.8}, abstract = {Before we begin our ISO27001 journey, it is important that we understand what it is that we are trying to achieve. When most people hear the phrase information security, they automatically think that it is applicable only to IT and the securing of computers and networks.But information can take many forms and is not only bits and bytes on computers or networks. Information can be printed or written on to paper; it can be verbal, whether spoken face to face, in a crowded room or over a telephone; or it can indeed be stored or transmitted electronically by computers,}, bookauthor = {BRIAN HONAN}, booktitle = {ISO27001 in a Windows ® Environment: The best practice handbook for a Microsoft® Windows® environment}, edition = {2}, pages = {18--23}, publisher = {IT Governance Publishing}, title = {INFORMATION AND INFORMATION SECURITY}, year = {2010} }