What is the Focus of the ISO 27002 Framework?
The focus of the ISO 27002 framework is to provide controls to implement an ISO 27001-based Information Security Management System (ISMS) (e.g., a comprehensive IT security program). ISO 27001 leverages the controls from ISO 27002 for the details of what goes into building a comprehensive IT security program (e.g., ISMS).
ISO 27001 Appendix A contains the basic overview of the security controls needed to build an ISMS, but ISO 27002 provides those specific controls that are necessary to actually implement ISO 27001. Essentially, you can't meet ISO 27001 without implementing ISO 27002.
While ISO 27002 cannot be certified against, an organization can become certified against ISO 27001. Achieving ISO/IEC 27001 certification signifies that the organization has implemented and maintains an effective ISMS.