• (0)
    Free Downloads - 27001Academy

    Download free ISO 27001 & ISO 22301 materials

    Get free white papers, presentations, templates, checklists, and other ISO 22301 and ISO 27001 PDF free download material intended for Project managers, Information Security managers, Data protection officers, Chief Information Security Officers and other employees who need guidance on how to implement ISO 27001 and similar standards and frameworks...Read more

    ISO 27001 & ISO 22301 White papers (26)

    Free Downloads - 27001Academy
    White paper | PDF

    Overview of new security controls in ISO 27002:2022

    This document helps information security managers and other employees to understand the key changes in the ISO 27002, compared to the old 2013 version of the standard. It explains the structure of sections, controls, and implications for the ISMS.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    ISO 27001 vs. ISO 27701 matrix

    This matrix shows the relationship between the clauses of ISO 27001 and ISO 27701, and gives an overview of the common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The matrix is intended for organizations that plan to implement both standards at the same time, or that already have one standard and want to implement the other one.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Checklist of cyber threats & safeguards when working from home

    This white paper outlines the key cyber threats and vulnerabilities to address when working from home. The checklist explains 3 levels of threats and 21 vulnerabilities, as well as the safeguards that need to be established according to ISO 27001.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Checklist of ISO 22301:2019 mandatory documentation

    This white paper is intended for business continuity managers and project managers who need to implement the standard. This helpful document gives an overview on what are ISO 22301 mandatory documents and records, together with the most commonly used non-mandatory documents.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    How to perform an internal audit using ISO 19011

    This white paper is intended for companies that need to perform an internal audit as part of their ISO 27001 management system. Learn how ISO 19011 can help you, and read about principles of auditing, auditor characteristics, and steps for internal auditing according to this standard.
    Download
    Free Downloads - 27001Academy
    Report | PDF

    Report: Compliance and information security - How are they related?

    Compliance or security? Where do companies put their focus? Which typical security methods are used to cover compliance requirements? Why do data breaches usually happen? These are just some of the questions we asked in our survey, carried out in June 2019, whose goal was to research the connection between security and compliance. Answers from more than 600 survey respondents, coming from countries in five continents, from various industries, mostly from smaller and medium-size companies, and acting predominantly in IT and security positions, helped us to discover the main findings. In this free report, read an overview of the results and analysis.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    What to expect at the ISO certification audit: What the auditor can and cannot do

    This white paper is intended for information security managers and consultants in companies which already implemented quality standard(s) and need guidance on what to expect at the ISO certification audit.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    How is ISO 27001 applicable for Software-as-a-Service companies?

    This white paper is intended for decision makers, information security managers, IT service managers, consultants and other employees in Software-as-a-Service companies that haven’t yet implemented ISO 27001. This helpful document gives an overview of benefits that the implementation of ISO 27001 can bring for SaaS business.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Step-by-step explanation of ISO 27001/ISO 27005 risk management

    This white paper is intended for Project managers, Information Security Manager, Data protection officers, Chief Information Security Officers and other employees who need guidance on how to implement risk management according to ISO 27001/ISO 27005. Get an overview of the risk management process, tasks you should consider while implementing the ISO 27001/ISO 27005 risk management and links to additional resources that will help you understand risk management.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    How to integrate ISO 27001, COBIT, and NIST

    This white paper outlines ISO 27001, the COBIT framework for information technology (IT) management and IT governance, and the NIST Cyber Security Framework. By demonstrating the similarities and differences, it also clarifies how they can be used together at the same time during an information security implementation project to improve information protection.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    How to implement the NIST Cyber Security Framework using ISO 27001

    This white paper outlines a US-based method of minimizing cybernetic risk, by discussing how to implement the NIST Cyber Security Framework using ISO 27001. By demonstrating the similarities and differences, it also clarifies how to integrate them successfully.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    ISO 27001 vs. ISO 22301 matrix

    This matrix shows relationships between the clauses of ISO 27001 and ISO 22301, and gives an overview of common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The purpose of this matrix is to present possibilities for combining these two systems in organizations that plan to implement both standards at the same time, or already have one standard and want to implement the other one.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    What is EU GDPR and how can ISO 27001 help?

    Understanding how ISO 27001 fits in alignment with EU GDPR can help organizations comply with these new European regulations. This document explains the relationship between EU GDPR and ISO 27001, while demonstrating how to go about protecting personal data. You will also learn whether you need to be EU GDPR compliant, and if ISO 27001 alone is adequate for compliance.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Clause-by-clause explanation of ISO 27001

    This document explains each clause of ISO 27001 and provides guidelines on what needs to be done to meet each requirement of the standard. It also gives insight into how to apply a process approach, and how to plan and analyze processes within the organization, helping you to understand how to establish and maintain an ISO 27001-based Information Security Management system (ISMS).
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Clause-by-clause explanation of ISO 22301

    This document explains each clause of ISO 22301 and provides guidelines on what needs to be done to meet each requirement of the standard. It also gives insight into how to apply a process approach, and how to plan and analyze processes within the organization – helping you to understand how your BCMS can reach its full potential.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Implementing ISO 27001 with a consultant vs. DIY approach

    When implementing ISO 27001 you may find it daunting deciding which method to follow. This white paper outlines the pros and cons of both going it alone, and hiring a consultant. It offers detail on both techniques, helping you make an informed decision as to which is the most suitable approach for your business.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    How to Budget an ISO 27001 Implementation Project

    Implementing a project like ISO 27001 can be costly if you do not budget in advance. This white paper aims to help you budget effectively, and prevent any unnecessary expenses from occurring. Not only will you learn budgeting benefits and tips, but also how different implementation options can impact your overall budget.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Privacy, cyber security, and ISO 27001 – How are they related?

    This white paper demonstrates how ISO 27001 and cyber security contribute to privacy protection issues. You will learn about cyberspace privacy risks and practical tools already available for cyber security implementation. The white paper also details how ISO 27001 provides guidance to protect information, as well as the steps to follow for applying best practices in privacy protection.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Integration of Information Security, IT and Corporate Governance

    This white paper explains how to integrate Information Security, IT and Corporate Governance, in the best possible way. It guides you though main principles of corporate governance and lists all the similarities and differences between all three types of governance. The white paper also lists tools available for you to use in this process to make it effortless and stress-free.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    ISO 27001 vs. ISO 20000 matrix

    The matrix shows relationships between clauses of ISO 27001 and ISO 20000, and gives an overview of common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The purpose of this matrix is to present possibilities for combining these two systems in organizations that plan to implement both standards at the same time or already have one standard and want to implement the other one.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Applicability of ISO 27001 divided by industry

    This is a list of the most common information security issues that can be resolved by ISO 27001 implementation, divided by industry. This is a very useful document if you need to present to your management what your peer companies are doing.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    ISO 27001 vs. ISO 9001 matrix

    The matrix shows relationships between clauses of ISO 27001 and ISO 9001, and gives an overview of common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The purpose of this document is to present possibilities for combining these two systems in organizations that plan to implement both standards at the same time or already have one standard and want to implement the other one.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Checklist of mandatory documentation required by ISO 27001:2013

    White paper that lists all the mandatory documents and records, but also briefly describes how to structure each document. This paper is ideal for all the companies that begin their ISMS implementation - it gives a perfect overview of which documents will be required, and where to place them.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    How online tools are revolutionizing ISO 27001 and ISO 22301 implementation

    In this white paper we will look at each of the implementation options (hire a consultant, do it on your own without support, or use the online tools) in more detail, providing an easy comparison for decision making.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    ISO 27001 Case study for data centers

    An interview with the CEO of a smaller data center that shows how the implementation of ISO 27001 can benefit organizations from this industry. In this paper, the CEO discusses very openly which obstacles they found while implementing ISO 27001, and how they are using this standard to compete in the market.
    Download
    Free Downloads - 27001Academy
    White paper | PDF

    Twelve-step transition process from ISO 27001:2005 to 2013 revision

    This white paper is intended for companies that have implemented the ISO 27001 2005 revision, and are planning to transition to the 2013 revision. The paper describes the suggested steps in the process.
    Download

    Presentations (4)

    Free Downloads - 27001Academy
    Presentation | MS PowerPoint

    Benefits of using Advisera’s toolkit for ISO 27001 project implementation

    This presentation is intended for security officers to present the benefits of purchasing the ISO 27001 toolkit to their top management or other decision makers.
    Download
    Free Downloads - 27001Academy
    Presentation | MS PowerPoint

    Project Plan for ISO 27001 Implementation

    Short presentation intended for chief security officers, project managers and other employees. This presentation will help clearly define the objectives of the Information Security Management System (ISMS) implementation project, documents to be written, deadlines, and roles and responsibilities in the project.
    Download
    Free Downloads - 27001Academy
    Presentation | MS PowerPoint

    Project proposal for ISO 27001 implementation

    Obtaining management support for implementation of ISO 27001 is not an easy task. You need to show them clearly and succinctly why this project is important for your company. With our Project Proposal template in PowerPoint, you’ll have a head start in earning management’s support and make sure that no important information is left out.
    Download
    Free Downloads - 27001Academy
    Presentation | MS PowerPoint

    Why ISO 27001 – Awareness presentation

    Short presentation intended for employees that shows what ISO 27001 is all about, why is it good for the company – and also for themselves, and what is their role in handling information security.
    Download

    Templates (2)

    Free Downloads - 27001Academy
    Template | MS Word

    Project proposal for ISO 27001 / ISO 22301 implementation

    Template of a document you can use to propose the implementation of ISO 27001 and/or ISO 22301 to your top management. It contains the following sections: Purpose, Reasoning, Project objectives, Project duration, Responsibilities, Resources, and Deliverables.
    Download
    Free Downloads - 27001Academy
    Template | MS Word

    Project plan for ISO 27001 / ISO 22301 implementation

    The purpose of the Project Plan is to clearly define the objective of the Information Security Management System (ISMS) implementation project, documents to be written, deadlines, and roles and responsibilities in the project.
    Download

    Checklists (10)

    Free Downloads - 27001Academy
    Checklist | MS Word

    Asset List for ISO 27001 Risk Assessment

    A checklist that will provide you with the list of assets to be used as a guide during the asset-based risk assessment process. The checklist outlines 3 major steps during the development of the asset list and includes examples of key asset categories, elements, and owners.
    Download
    Free Downloads - 27001Academy
    Diagram | PDF

    Diagram of 6 steps in ISO 27001/ISO 27005 risk management

    This diagram presents the six basic steps in the ISO 27001/ISO 27005 risk management process, starting with defining how to assess the risks, and ending with creating the implementation plan for risk controls.
    Download
    Free Downloads - 27001Academy
    Diagram | PDF

    Diagram of ISO 27001:2013 Risk Assessment and Treatment process

    Diagram that shows the ISO 27001 Risk Assessment and Treatment process, considering an asset – threat – vulnerability approach.
    Download
    Free Downloads - 27001Academy
    Checklist | MS Word

    List of Questions to ask an ISO 27001 or ISO 22301 certification body

    Which certification body is right for you? Consider these questions when deciding which registration body to hire for your ISO 27001 and/or ISO 22301 certification. This list contains 15 questions that will enable you to choose the right partner for this important step.
    Download
    Free Downloads - 27001Academy
    Checklist | MS Word

    List of questions to ask your ISO 27001/ISO 22301 consultant

    Before deciding about hiring a consultant for your ISO 27001 and/or ISO 22301 implementation, consider these questions and use them to evaluate potential consultants.
    Download
    Free Downloads - 27001Academy
    Diagram | PDF

    Diagram of ISO 27001:2013 Implementation

    Diagram that shows the ISO 27001 implementation process, from the beginning of the project to the certification.
    Download
    Free Downloads - 27001Academy
    Diagram | PDF

    Diagram of ISO 22301 implementation process

    Diagram that shows the ISO 22301 implementation process, from the beginning of the project to the certification.
    Download
    Free Downloads - 27001Academy
    Diagram | PDF

    Diagram of BS 25999 implementation process

    Diagram that shows the BS 25999-2 implementation process, from the beginning of the project to the certification.
    Download
    Free Downloads - 27001Academy
    Checklist | MS Word

    Project checklist for ISO 27001 implementation

    A checklist that will enable you to keep track of all steps during the ISO 27001 implementation project. The checklist has 14 major steps and 44 tasks, starting with obtaining management support all the way through to certification audit.
    Download
    Free Downloads - 27001Academy
    Checklist | MS Word

    Project checklist for ISO 22301 implementation

    A checklist that will enable you to keep track of all steps during the ISO 22301 implementation project. The checklist has 17 major steps and 51 tasks, starting with obtaining management support all the way through to certification audit.
    Download
    Free Downloads - 27001Academy
    Dejan Kosutic
    Lead ISO 27001/ISO 22301 Expert

    Wondering what the audit process looks like?

    Speak to our expert and learn how to comply with ISO 27001 or ISO 22301 easily and for a minimal cost.

    SCHEDULE FREE CONSULTATION