Show me desktop version


Stress-free ISO 27001 and ISO 22301 Implementation
(it’s easy, and you don’t need a consultant)


Today’s modern companies know that the ground-breaking 27001Academy is the way to implement ISO 27001 and ISO 22301. Our comprehensive service is simple to use, provides complete documentation, and gives you all the professional support and advice you need – at a substantial cost savings over hiring a consultant.


View documentsView courses

Free ISO 27001 and ISO 22301 Virtual Consultant

Your virtual consultant, Oscar the Owl, is here for you – providing individualized advice and direction throughout each step of the ISO 27001 and ISO 22301 implementation process. He’ll help you learn all you need to know, prepare your project, and give you the personal attention you deserve – without the high price tag a “real” consultant brings.


Where to start?

Learn where you are, and what you should do first.

Examine all the options

Try it yourself, bring in a consultant, or do it yourself with expert help.

Learn how you can do it yourself

Find a wealth of tools and information that can help you do it yourself.

Begin your implementation

Get the expert advice and assistance you need – including complete document templates!

Get top management on board

Create a winning presentation to secure buy-in from management and stakeholders.

Prepare your project

Get organized, and learn which people and resources you need.


ISO 27001 Documentation Toolkit

This comprehensive set of ISO 27001 document templates will allow you to efficiently implement the standard and ensure certification. Each template contains instructions and guidance and is easy to complete.



ISO 22301 Documentation Toolkit

This set of business continuity documentation templates is fully compliant with ISO 22301, but also with BS 25999 (the predecessor of ISO 22301). The documentation includes business continuity plans, recovery plans, business impact analysis, and many others.



Free ISO 27001:2013 Foundations Course

Learn everything you need to know about ISO 27001, including all the requirements and best practices for compliance. This online course is made for beginners. No prior knowledge in information security and ISO standards is needed.



Free downloads

Want to find out which are the mandatory documents for ISO 27001 or ISO 22301 implementation? Or what is the implementation process? Or you need a project plan template? Check out our free downloads with white papers, case studies, checklists, templates, and other materials.


Why should you choose the 27001Academy? 



Designed by Leading Experts

Our toolkits are created by leading experts
in ISO 27001 and ISO 22301.


Simple and Fast

You will love the savings – in cost, time, and
labor – you’ll realize during your ISO 27001
and ISO 22301 implementation project.


We’re not Robots

We don’t hide behind a website – we’re actual
people, and we’re here to help you.

Hear what the experts have to say:
ISO 27001 and ISO 22301 Videos and Webinars

  • Feb 17. 2016

  • Mar 2. 2016

  • Mar 16. 2016

  • Mar 30. 2016

  • Apr 13. 2016

  • Apr 27. 2016

  • May 11. 2016

Find more information and support in our ISO 27001 & ISO 22301 Blog

Implementing restrictions on software installation using ISO 27001 control A.12.6.2

Currently, in all companies around the world, it is necessary to install software (operating systems, office applications, financial applications, applications development, etc.). But, in general, the installation of this software is not sufficiently controlled, which can lead to certain risks. ISO 27001:2013 can help these companies with the implementation of an Information ...Read more

Key performance indicators for an ISO 27001 ISMS

Think about a medical exam. Our objective is for the physician to tell us that our health is ok and that we’ll live a long life, right? And how does the physician evaluate our health to determine if we are on track or not? By using several biological indicators, like ...Read more

How to protect against external and environmental threats according to ISO 27001 A.11.1.4

Physical security plays a critical role in information protection, because even the best designed, implemented, and maintained technical and administrative controls, whether IT related or from some other area, are of little help if an event physically affects the environment or the assets on which those controls work. For example, ...Read more

How to use penetration testing for ISO 27001 A.12.6.1

A famous historical hacker, Kevin Mitnick, said on one occasion: “I get hired by companies to hack into their systems and break into their physical facilities to find security holes. Our success rate is 100%; we have always found a hole.” So, probably the question now on your mind is ...Read more

How to set security requirements and test systems according to ISO 27001

Security is something that everyone wants to have, but which no one ever wants to use. And this thought can bring a lot of problems. Unless a system’s purpose is security related (e.g., firewall, access system, etc.), users pay little attention to how security is embedded in a product, and ...Read more

How to use the cryptography according to ISO 27001 control A.10

Today, information travels constantly from one part of the world to another through email, online transactions, USB flash drives, and external hard drives. Outside the facilities of the organization, the information is in many places, such as ISP servers, routers, switches, external suppliers, carries and more, before arriving at its ...Read more
Request callback
Request callback
Time to call:

Or call us directly

International calls
+1 (646) 759 9933