I have had 2 conversations with CISOs in the U.S. this week about projects to align their orgs with ISO17799, to culminate in 27001 certification.  27001 has been slow going in the states, but it looks to be on the rise and I think we are at the beginning of a wave of activities to use the ISO framework and map it to government-driven standards.