Show me desktop version


Stress-free ISO 27001 and ISO 22301 Implementation
(it’s easy, and you don’t need a consultant)


Today’s modern companies know that the ground-breaking 27001Academy is the way to implement ISO 27001 and ISO 22301. Our comprehensive service is simple to use, provides complete documentation, and gives you all the professional support and advice you need – at a substantial cost savings over hiring a consultant.


View documentsView courses

Free ISO 27001 and ISO 22301 Virtual Consultant

Your virtual consultant, Oscar the Owl, is here for you – providing individualized advice and direction throughout each step of the ISO 27001 and ISO 22301 implementation process. He’ll help you learn all you need to know, prepare your project, and give you the personal attention you deserve – without the high price tag a “real” consultant brings.


Where to start?

Learn where you are, and what you should do first.

Examine all the options

Try it yourself, bring in a consultant, or do it yourself with expert help.

Learn how you can do it yourself

Find a wealth of tools and information that can help you do it yourself.

Begin your implementation

Get the expert advice and assistance you need – including complete document templates!

Get top management on board

Create a winning presentation to secure buy-in from management and stakeholders.

Prepare your project

Get organized, and learn which people and resources you need.


ISO 27001 Documentation Toolkit

This comprehensive set of ISO 27001 document templates will allow you to efficiently implement the standard and ensure certification. Each template contains instructions and guidance and is easy to complete.



ISO 22301 Documentation Toolkit

This set of business continuity documentation templates is fully compliant with ISO 22301, but also with BS 25999 (the predecessor of ISO 22301). The documentation includes business continuity plans, recovery plans, business impact analysis, and many others.



Free ISO 27001:2013 Foundations Course

Learn everything you need to know about ISO 27001, including all the requirements and best practices for compliance. This online course is made for beginners. No prior knowledge in information security and ISO standards is needed.



Free downloads

Want to find out which are the mandatory documents for ISO 27001 or ISO 22301 implementation? Or what is the implementation process? Or you need a project plan template? Check out our free downloads with white papers, case studies, checklists, templates, and other materials.


Why should you choose the 27001Academy? 



Designed by Leading Experts

Our toolkits are created by leading experts
in ISO 27001 and ISO 22301.


Simple and Fast

You will love the savings – in cost, time, and
labor – you’ll realize during your ISO 27001
and ISO 22301 implementation project.


We’re not Robots

We don’t hide behind a website – we’re actual
people, and we’re here to help you.

Hear what the experts have to say:
ISO 27001 and ISO 22301 Videos and Webinars

  • May 11. 2016

  • Mar 1. 2017

  • May 25. 2016

  • Jun 8. 2016

  • Jun 21. 2016

  • Jul 6. 2016

  • Feb 1. 2017

Find more information and support in our ISO 27001 & ISO 22301 Blog

How to implement equipment physical protection according to ISO 27001 A.11.2 – Part 2

As I mentioned in my previous article How to implement equipment physical protection according to ISO 27001 A.11.2 – Part 1, having good solution software to protect the information security is not enough to protect your organization’s information; we must also set up physical security controls to protect the equipment. ...Read more

How to implement equipment physical protection according to ISO 27001 A.11.2 – Part 1

Most of the companies today have controls to protect themselves from malicious software (viruses, trojans, etc.), to prevent employees from accessing malicious sites (filtering addresses through proxy servers), or to encrypt information when it is sent/received through email. However, I often find companies that neglect the physical protection of equipment, ...Read more

3 strategies to implement any ISO standard

If you’re considering the implementation of ISO 27001, ISO 9001, ISO 14001, ISO 20000, or any other ISO management standard, you’re probably overwhelmed with various approaches on how to start and finish such project successfully. In my opinion, there are three basic options to implement these standards: (1) do it ...Read more

ISO 31010: What to use instead of the asset-based approach for ISO 27001 risk identification

One of the most significant changes in the 2013 version of ISO 27001, a worldwide standard for Information Security Management Systems, is that it does not prescribe any approach in the risk assessment anymore. While it still requires the adoption of a process-based risk assessment approach (learn more here: ISO 27001 ...Read more

ISO 27001 Internal Auditor training – Is it good for my career?

With business processes under constant pressure from management, customers, and other interested parties, to protect information exactly as requested, by means of technical specifications, legal requirements, or business objectives, and the greater complexity and sophistication of operations, the use of audit expertise in information security is becoming a critical point ...Read more

The challenging role of the ISO 22301 BCM Manager

The Business Continuity Management (BCM) manager plays a pivotal role in the implementation of a BCM approach. As such, the role faces multiple challenges, from both top management and key process owners within the organization. As BCM is considered to be a cost factor in the first place, proper funding and ...Read more
Request callback
Request callback

Or call us directly

International calls
+1 (646) 759 9933