This document provides information about an information security foundation based on the ISO/IEC 27002 standard. It is presented to Ryan Rook on May 10, 2016 by Bernd W.E. Taselaar, the Chief Executive Officer of EXIN, the global independent certification institute for ICT professionals.