Show me desktop version


Stress-free ISO 27001 and ISO 22301 Implementation
(it’s easy, and you don’t need a consultant)


Today’s modern companies know that the ground-breaking 27001Academy is the way to implement ISO 27001 and ISO 22301. Our comprehensive service is simple to use, provides complete documentation, and gives you all the professional support and advice you need – at a substantial cost savings over hiring a consultant.


View documentsView courses

Free ISO 27001 and ISO 22301 Virtual Consultant

Your virtual consultant, Oscar the Owl, is here for you – providing individualized advice and direction throughout each step of the ISO 27001 and ISO 22301 implementation process. He’ll help you learn all you need to know, prepare your project, and give you the personal attention you deserve – without the high price tag a “real” consultant brings.


Where to start?

Learn where you are, and what you should do first.

Examine all the options

Try it yourself, bring in a consultant, or do it yourself with expert help.

Learn how you can do it yourself

Find a wealth of tools and information that can help you do it yourself.

Begin your implementation

Get the expert advice and assistance you need – including complete document templates!

Get top management on board

Create a winning presentation to secure buy-in from management and stakeholders.

Prepare your project

Get organized, and learn which people and resources you need.


ISO 27001 Documentation Toolkit

This comprehensive set of ISO 27001 document templates will allow you to efficiently implement the standard and ensure certification. Each template contains instructions and guidance and is easy to complete.



ISO 22301 Documentation Toolkit

This set of business continuity documentation templates is fully compliant with ISO 22301, but also with BS 25999 (the predecessor of ISO 22301). The documentation includes business continuity plans, recovery plans, business impact analysis, and many others.



Free ISO 27001:2013 Foundations Course

Learn everything you need to know about ISO 27001, including all the requirements and best practices for compliance. This online course is made for beginners. No prior knowledge in information security and ISO standards is needed.



Free downloads

Want to find out which are the mandatory documents for ISO 27001 or ISO 22301 implementation? Or what is the implementation process? Or you need a project plan template? Check out our free downloads with white papers, case studies, checklists, templates, and other materials.


Why should you choose the 27001Academy? 



Designed by Leading Experts

Our toolkits are created by leading experts
in ISO 27001 and ISO 22301.


Simple and Fast

You will love the savings – in cost, time, and
labor – you’ll realize during your ISO 27001
and ISO 22301 implementation project.


We’re not Robots

We don’t hide behind a website – we’re actual
people, and we’re here to help you.

Hear what the experts have to say:
ISO 27001 and ISO 22301 Videos and Webinars

  • Nov 9. 2016

  • Dec 1. 2016

  • Dec 7. 2016

  • Feb 1. 2017

  • Mar 1. 2017

  • Apr 26. 2017

  • Jun 7. 2017

  • Jul 6. 2016

Find more information and support in our ISO 27001 & ISO 22301 Blog

Where does information security fit into a company?

Very often, I hear controversial discussions about whether information security is part of IT, or whether it should be separate from it, part of some compliance or risk department, etc. But, before we determine who should be handling information security and from which organizational unit, let’s see first the conceptual ...Read more

Does ISO 27001 implementation satisfy EU GDPR requirements?

Lately, I’ve been asked questions like: “If ISO 27001 is implemented in my organization, will it fully comply with European General Data Protection Regulation (EU GDPR) requirements?” and “Our company is ISO 27001 certified. Are we already compliant with EU GDPR?” The new regulation introduces a set of rules that require ...Read more

How to integrate COSO, COBIT, and ISO 27001 frameworks

Recently, the ISO (International Standardization Organization) updated ISO 9001, ISO 14001, and ISO 27001 to make easier to use them together. But, how do they interact with practices outside the ISO world? How to integrate COSO, COBIT, and ISO 27001 frameworks. This article will present how ISO 27001 can be ...Read more

What is the EU GDPR and why is it applicable to the whole world?

The General Data Protection Regulation (GDPR) will replace the actual Directive (Data Protection Directive 95/46/EC). It will not apply until May 25, 2018, but it does require companies to start preparing now, taking into account some obligations may be onerous and time consuming to implement. What is personal data? Based ...Read more

Network segregation in cloud environments according to ISO 27017

In a previous article, I wrote about network segregation considering a physical network structure (see: Requirements to implement network segregation according to ISO 27001 control A.13.1.3), and while the concepts presented there are still valid when you consider network segregation in cloud computing environments, some new considerations must be made. ...Read more

How to use ISO 27017 to manage legal risks related to geographical location

Cloud services are often sold as solutions that can be anywhere and everywhere. All that is necessary is a computer and a network connection to work with data, applications, and resources. While from user’s point of view this is true, cloud services ultimately rely on physical infrastructure, which has to ...Read more
Request callback
Request callback

Or call us directly

International calls
+1 (646) 759 9933