Show me desktop version


Stress-free ISO 27001 and ISO 22301 Implementation
(it’s easy, and you don’t need a consultant)


Today’s modern companies know that the ground-breaking 27001Academy is the way to implement ISO 27001 and ISO 22301. Our comprehensive service is simple to use, provides complete documentation, and gives you all the professional support and advice you need – at a substantial cost savings over hiring a consultant.


View documents

Free ISO 27001 and ISO 22301 Virtual Consultant

Your virtual consultant, Oscar the Owl, is here for you – providing individualized advice and direction throughout each step of the ISO 27001 and ISO 22301 implementation process. He’ll help you learn all you need to know, prepare your project, and give you the personal attention you deserve – without the high price tag a “real” consultant brings.


Where to start?

Learn where you are, and what you should do first.

Examine all the options

Try it yourself, bring in a consultant, or do it yourself with expert help.

Learn how you can do it yourself

Find a wealth of tools and information that can help you do it yourself.

Begin your implementation

Get the expert advice and assistance you need – including complete document templates!

Get top management on board

Create a winning presentation to secure buy-in from management and stakeholders.

Prepare your project

Get organized, and learn which people and resources you need.


ISO 27001 Documentation Toolkit

This comprehensive set of ISO 27001 document templates will allow you to efficiently implement the standard and ensure certification. Each template contains instructions and guidance and is easy to complete.



ISO 22301 Documentation Toolkit

This set of business continuity documentation templates is fully compliant with ISO 22301, but also with BS 25999 (the predecessor of ISO 22301). The documentation includes business continuity plans, recovery plans, business impact analysis, and many others.



Free Expert Consultations

Feeling overwhelmed? You can talk to our resident ISO 27001 and ISO 22301 experts for free – just contact us to set up a time that works for you, and we’ll answer all your questions during a private consultation. You’ll come away with full understanding, and learn what next steps you need to take.



Free downloads

Want to find out which are the mandatory documents for ISO 27001 or ISO 22301 implementation? Or what is the implementation process? Or you need a project plan template? Check out our free downloads with white papers, case studies, checklists, templates, and other materials.


Why should you choose the 27001Academy? 



Designed by Leading Experts

Our toolkits are created by leading experts
in ISO 27001 and ISO 22301.


Simple and Fast

You will love the savings – in cost, time, and
labor – you’ll realize during your ISO 27001
and ISO 22301 implementation project.


We’re not Robots

We don’t hide behind a website – we’re actual
people, and we’re here to help you.

Hear what the experts have to say:
ISO 27001 and ISO 22301 Videos and Webinars

  • Oct 14. 2015

  • Oct 28. 2015

  • Nov 11. 2015

  • Nov 25. 2015

  • Feb 3. 2016

  • Dec 9. 2015

  • Jan 20. 2016

Find more information and support in our ISO 27001 & ISO 22301 Blog

How to implement integrated management systems

Recently, we saw the release of new versions of two of the best-known ISO standards: ISO 9001 (requirements for Quality Management Systems) and ISO 14001 (requirements for Environmental Management Systems). Like ISO 22301 and ISO 27001:2013, these standards follow a similar structure, based on Annex SL, Appendix 2 of ISO/IEC Directives (for more ...Read more

3 phases of delivering an ISO 27001/ISO 22301 consulting job

If you’re an independent consultant at the beginning of your career, you’re probably wondering how to perform your first consulting job for ISO 27001 or ISO 22301 implementation. But, don’t worry – here’s what you need to do. Steps before you start the project If this is really your first job, ...Read more

Understanding IT disaster recovery according to ISO 27031

Section A.17.1 of Annex A of ISO 27001 has as its objective that an organization shall embed information security continuity in its business continuity management systems. To support that, this section provides controls related to business continuity procedures (BCPs), recovery plans and redundancies. However, like all management system standards, ISO 27001 describes only what ...Read more

How to manage changes in an ISMS according to ISO 27001 A.12.1.2

Changes are necessary in the information technology sector, mainly because every so often it is necessary to update servers, systems, etc. But risks (seen from an information security point of view) arise when changes are performed in an uncontrolled way, i.e., confidentiality, integrity, and availability of systems, applications, information… could ...Read more

How to write an easy-to-use BYOD policy compliant with ISO 27001

One would expect that ISO 27001, the leading information security standard, would have strict requirements regarding BYOD. However, you would be surprised – such requirements do not exist, and what’s more, neither BYOD nor Bring Your Own Device is ever mentioned in the standard. BYOD is, of course, unavoidable in ...Read more

What are secure engineering principles in ISO 27001:2013 control A.14.2.5?

In my days of programming (big hosts and green/amber terminals, matrix printers…) we didn’t think so much about information security, and especially not about secure engineering. Functional specifications were very simple, and acceptance criteria for the final product were: it had to look fairly nice, calculations (if any) had to ...Read more
Request callback
Request callback
Time to call:

Or call us directly

International calls
+1 (646) 759 9933