The idea of the new ISO 27001:2013 is to provide a more flexible approach to lead to more effective risk management, regardless of the standards that have already been implemented or intended to implement. ISO 27001:2013 will help your company to manage and protect information, by helping you to identify the inherent risks and to put in place the appropriate controls to help you to reduce those risks.
Apply the four steps method of ISO 27001 implementation, proposed on training, and implement ISO 27001 in your company. Do not complicate what is simple! Discover all ISO 27001 courses