ISO 27035 is about incident response, but given that part 3 (which covers operations) hasn’t been published yet, is there much useful overlap? Does part 2 overlap with any of ISO 27001, or is a company better off not worrying about 27035 for the moment?
Answer: You can see ISO 27035 parts 1 and 2 as an additional deepening of the ISO 27002 recommendations regarding incident management (section 13), while part 3 will cover the effective incident response. So, these parts can be used regardless the publication of part 3
If you already have an implemented incident management process that fulfils your objectives, using the ISO 27035 parts 1 and 2 is optional, as a source of possible improvement opportunities. If you are in the process of implementing an incident management process ISO 27035 parts 1 and 2 can provide more recommendations than ISO 27002.