BS ISO 27005:2011 provides guidelines for Information Security Risk Management supporting the requirements specified by ISO 27001. It does not provide a particular methodology, and is generic in this sense. A number of methodologies can be used with the framework defined.
The ISO 27005 standard applies to all types of organizations which intend to manage risks in a robust and defined manner.
PURCHASE AND DOWNLOAD
Information Security Risk Management . 55 pages. £110 (approx $149)
Click Here To Purchase and Download BS ISO 27005