SPRING DISCOUNT
Get 30% off on toolkits, course exams, and books.
Limited-time offer – ends May 26, 2022
powered by
Get free white papers, presentations, templates, checklists, and other ISO 22301 and ISO 27001 PDF free download material intended for Project managers, Information Security managers, Data protection officers, Chief Information Security Officers and other employees who need guidance on how to implement ISO 27001 and similar standards and frameworks...Read more
MOST POPULAR
Presentation | MS PowerPoint
Project Plan for ISO 27001 Implementation
Short presentation intended for chief security officers, project managers and other employees. This presentation will help clearly define the objectives of the Information Security Management System (ISMS) implementation project, documents to be written, deadlines, and roles and responsibilities in the project.
Download
White paper | PDF
Step-by-step explanation of ISO 27001/ISO 27005 risk management
This white paper is intended for Project managers, Information Security Manager, Data protection officers, Chief Information Security Officers and other employees who need guidance on how to implement risk management according to ISO 27001/ISO 27005. Get an overview of the risk management process, tasks you should consider while implementing the ISO 27001/ISO 27005 risk management and links to additional resources that will help you understand risk management.
Download
White paper | PDF
Clause-by-clause explanation of ISO 27001
This document explains each clause of ISO 27001 and provides guidelines on what needs to be done to meet each requirement of the standard. It also gives insight into how to apply a process approach, and how to plan and analyze processes within the organization, helping you to understand how to establish and maintain an ISO 27001-based Information Security Management system (ISMS).
Download
White paper | PDF
Checklist of mandatory documentation required by ISO 27001:2013
White paper that lists all the mandatory documents and records, but also briefly describes how to structure each document. This paper is ideal for all the companies that begin their ISMS implementation - it gives a perfect overview of which documents will be required, and where to place them.
Download
ISO 27001 & ISO 22301 White papers (26)
White paper | PDF
Overview of new security controls in ISO 27002:2022
This document helps information security managers and other employees to understand the key changes in the ISO 27002, compared to the old 2013 version of the standard. It explains the structure of sections, controls, and implications for the ISMS.
Download
White paper | PDF
ISO 27001 vs. ISO 27701 matrix
This matrix shows the relationship between the clauses of ISO 27001 and ISO 27701, and gives an overview of the common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The matrix is intended for organizations that plan to implement both standards at the same time, or that already have one standard and want to implement the other one.
Download
White paper | PDF
Checklist of cyber threats & safeguards when working from home
This white paper outlines the key cyber threats and vulnerabilities to address when working from home. The checklist explains 3 levels of threats and 21 vulnerabilities, as well as the safeguards that need to be established according to ISO 27001.
Download
White paper | PDF
Checklist of ISO 22301:2019 mandatory documentation
This white paper is intended for business continuity managers and project managers who need to implement the standard. This helpful document gives an overview on what are ISO 22301 mandatory documents and records, together with the most commonly used non-mandatory documents.
Download
White paper | PDF
How to perform an internal audit using ISO 19011
This white paper is intended for companies that need to perform an internal audit as part of their ISO 27001 management system. Learn how ISO 19011 can help you, and read about principles of auditing, auditor characteristics, and steps for internal auditing according to this standard.
Download
Report | PDF
Report: Compliance and information security - How are they related?
Compliance or security? Where do companies put their focus? Which typical security methods are used to cover compliance requirements? Why do data breaches usually happen? These are just some of the questions we asked in our survey, carried out in June 2019, whose goal was to research the connection between security and compliance. Answers from more than 600 survey respondents, coming from countries in five continents, from various industries, mostly from smaller and medium-size companies, and acting predominantly in IT and security positions, helped us to discover the main findings. In this free report, read an overview of the results and analysis.
Download
White paper | PDF
What to expect at the ISO certification audit: What the auditor can and cannot do
This white paper is intended for information security managers and consultants in companies which already implemented quality standard(s) and need guidance on what to expect at the ISO certification audit.
Download
White paper | PDF
How is ISO 27001 applicable for Software-as-a-Service companies?
This white paper is intended for decision makers, information security managers, IT service managers, consultants and other employees in Software-as-a-Service companies that haven’t yet implemented ISO 27001. This helpful document gives an overview of benefits that the implementation of ISO 27001 can bring for SaaS business.
Download
White paper | PDF
Step-by-step explanation of ISO 27001/ISO 27005 risk management
This white paper is intended for Project managers, Information Security Manager, Data protection officers, Chief Information Security Officers and other employees who need guidance on how to implement risk management according to ISO 27001/ISO 27005. Get an overview of the risk management process, tasks you should consider while implementing the ISO 27001/ISO 27005 risk management and links to additional resources that will help you understand risk management.
Download
White paper | PDF
How to integrate ISO 27001, COBIT, and NIST
This white paper outlines ISO 27001, the COBIT framework for information technology (IT) management and IT governance, and the NIST Cyber Security Framework. By demonstrating the similarities and differences, it also clarifies how they can be used together at the same time during an information security implementation project to improve information protection.
Download
White paper | PDF
How to implement the NIST Cyber Security Framework using ISO 27001
This white paper outlines a US-based method of minimizing cybernetic risk, by discussing how to implement the NIST Cyber Security Framework using ISO 27001. By demonstrating the similarities and differences, it also clarifies how to integrate them successfully.
Download
White paper | PDF
ISO 27001 vs. ISO 22301 matrix
This matrix shows relationships between the clauses of ISO 27001 and ISO 22301, and gives an overview of common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The purpose of this matrix is to present possibilities for combining these two systems in organizations that plan to implement both standards at the same time, or already have one standard and want to implement the other one.
Download
White paper | PDF
What is EU GDPR and how can ISO 27001 help?
Understanding how ISO 27001 fits in alignment with EU GDPR can help organizations comply with these new European regulations. This document explains the relationship between EU GDPR and ISO 27001, while demonstrating how to go about protecting personal data. You will also learn whether you need to be EU GDPR compliant, and if ISO 27001 alone is adequate for compliance.
Download
White paper | PDF
Clause-by-clause explanation of ISO 27001
This document explains each clause of ISO 27001 and provides guidelines on what needs to be done to meet each requirement of the standard. It also gives insight into how to apply a process approach, and how to plan and analyze processes within the organization, helping you to understand how to establish and maintain an ISO 27001-based Information Security Management system (ISMS).
Download
White paper | PDF
Clause-by-clause explanation of ISO 22301
This document explains each clause of ISO 22301 and provides guidelines on what needs to be done to meet each requirement of the standard. It also gives insight into how to apply a process approach, and how to plan and analyze processes within the organization – helping you to understand how your BCMS can reach its full potential.
Download
White paper | PDF
Implementing ISO 27001 with a consultant vs. DIY approach
When implementing ISO 27001 you may find it daunting deciding which method to follow. This white paper outlines the pros and cons of both going it alone, and hiring a consultant. It offers detail on both techniques, helping you make an informed decision as to which is the most suitable approach for your business.
Download
White paper | PDF
How to Budget an ISO 27001 Implementation Project
Implementing a project like ISO 27001 can be costly if you do not budget in advance. This white paper aims to help you budget effectively, and prevent any unnecessary expenses from occurring. Not only will you learn budgeting benefits and tips, but also how different implementation options can impact your overall budget.
Download
White paper | PDF
Privacy, cyber security, and ISO 27001 – How are they related?
This white paper demonstrates how ISO 27001 and cyber security contribute to privacy protection issues. You will learn about cyberspace privacy risks and practical tools already available for cyber security implementation. The white paper also details how ISO 27001 provides guidance to protect information, as well as the steps to follow for applying best practices in privacy protection.
Download
White paper | PDF
Integration of Information Security, IT and Corporate Governance
This white paper explains how to integrate Information Security, IT and Corporate Governance, in the best possible way. It guides you though main principles of corporate governance and lists all the similarities and differences between all three types of governance. The white paper also lists tools available for you to use in this process to make it effortless and stress-free.
Download
White paper | PDF
ISO 27001 vs. ISO 20000 matrix
The matrix shows relationships between clauses of ISO 27001 and ISO 20000, and gives an overview of common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The purpose of this matrix is to present possibilities for combining these two systems in organizations that plan to implement both standards at the same time or already have one standard and want to implement the other one.
Download
White paper | PDF
Applicability of ISO 27001 divided by industry
This is a list of the most common information security issues that can be resolved by ISO 27001 implementation, divided by industry. This is a very useful document if you need to present to your management what your peer companies are doing.
Download
White paper | PDF
ISO 27001 vs. ISO 9001 matrix
The matrix shows relationships between clauses of ISO 27001 and ISO 9001, and gives an overview of common requirements of these two standards with tips on how to fulfill them with as little documentation as possible. The purpose of this document is to present possibilities for combining these two systems in organizations that plan to implement both standards at the same time or already have one standard and want to implement the other one.
Download
White paper | PDF
Checklist of mandatory documentation required by ISO 27001:2013
White paper that lists all the mandatory documents and records, but also briefly describes how to structure each document. This paper is ideal for all the companies that begin their ISMS implementation - it gives a perfect overview of which documents will be required, and where to place them.
Download
White paper | PDF
How online tools are revolutionizing ISO 27001 and ISO 22301 implementation
In this white paper we will look at each of the implementation options (hire a consultant, do it on your own without support, or use the online tools) in more detail, providing an easy comparison for decision making.
Download
White paper | PDF
ISO 27001 Case study for data centers
An interview with the CEO of a smaller data center that shows how the implementation of ISO 27001 can benefit organizations from this industry. In this paper, the CEO discusses very openly which obstacles they found while implementing ISO 27001, and how they are using this standard to compete in the market.
Download
White paper | PDF
Twelve-step transition process from ISO 27001:2005 to 2013 revision
This white paper is intended for companies that have implemented the ISO 27001 2005 revision, and are planning to transition to the 2013 revision. The paper describes the suggested steps in the process.
Download
Presentations (4)
Presentation | MS PowerPoint
Benefits of using Advisera’s toolkit for ISO 27001 project implementation
This presentation is intended for security officers to present the benefits of purchasing the ISO 27001 toolkit to their top management or other decision makers.
Download
Presentation | MS PowerPoint
Project Plan for ISO 27001 Implementation
Short presentation intended for chief security officers, project managers and other employees. This presentation will help clearly define the objectives of the Information Security Management System (ISMS) implementation project, documents to be written, deadlines, and roles and responsibilities in the project.
Download
Presentation | MS PowerPoint
Project proposal for ISO 27001 implementation
Obtaining management support for implementation of ISO 27001 is not an easy task. You need to show them clearly and succinctly why this project is important for your company. With our Project Proposal template in PowerPoint, you’ll have a head start in earning management’s support and make sure that no important information is left out.
Download
Presentation | MS PowerPoint
Why ISO 27001 – Awareness presentation
Short presentation intended for employees that shows what ISO 27001 is all about, why is it good for the company – and also for themselves, and what is their role in handling information security.
Download
Templates (2)
Template | MS Word
Project proposal for ISO 27001 / ISO 22301 implementation
Template of a document you can use to propose the implementation of ISO 27001 and/or ISO 22301 to your top management. It contains the following sections: Purpose, Reasoning, Project objectives, Project duration, Responsibilities, Resources, and Deliverables.
Download
Template | MS Word
Project plan for ISO 27001 / ISO 22301 implementation
The purpose of the Project Plan is to clearly define the objective of the Information Security Management System (ISMS) implementation project, documents to be written, deadlines, and roles and responsibilities in the project.
Download
Checklists (10)
Checklist | MS Word
Asset List for ISO 27001 Risk Assessment
A checklist that will provide you with the list of assets to be used as a guide during the asset-based risk assessment process. The checklist outlines 3 major steps during the development of the asset list and includes examples of key asset categories, elements, and owners.
Download
Diagram | PDF
Diagram of 6 steps in ISO 27001/ISO 27005 risk management
This diagram presents the six basic steps in the ISO 27001/ISO 27005 risk management process, starting with defining how to assess the risks, and ending with creating the implementation plan for risk controls.
Download
Diagram | PDF
Diagram of ISO 27001:2013 Risk Assessment and Treatment process
Diagram that shows the ISO 27001 Risk Assessment and Treatment process, considering an asset – threat – vulnerability approach.
Download
Checklist | MS Word
List of Questions to ask an ISO 27001 or ISO 22301 certification body
Which certification body is right for you? Consider these questions when deciding which registration body to hire for your ISO 27001 and/or ISO 22301 certification. This list contains 15 questions that will enable you to choose the right partner for this important step.
Download
Checklist | MS Word
List of questions to ask your ISO 27001/ISO 22301 consultant
Before deciding about hiring a consultant for your ISO 27001 and/or ISO 22301 implementation, consider these questions and use them to evaluate potential consultants.
Download
Diagram | PDF
Diagram of ISO 27001:2013 Implementation
Diagram that shows the ISO 27001 implementation process, from the beginning of the project to the certification.
Download
Diagram | PDF
Diagram of ISO 22301 implementation process
Diagram that shows the ISO 22301 implementation process, from the beginning of the project to the certification.
Download
Diagram | PDF
Diagram of BS 25999 implementation process
Diagram that shows the BS 25999-2 implementation process, from the beginning of the project to the certification.
Download
Checklist | MS Word
Project checklist for ISO 27001 implementation
A checklist that will enable you to keep track of all steps during the ISO 27001 implementation project. The checklist has 14 major steps and 44 tasks, starting with obtaining management support all the way through to certification audit.
Download
Checklist | MS Word
Project checklist for ISO 22301 implementation
A checklist that will enable you to keep track of all steps during the ISO 22301 implementation project. The checklist has 17 major steps and 51 tasks, starting with obtaining management support all the way through to certification audit.
Download
Wondering what the audit process looks like?
Speak to our expert and learn how to comply with ISO 27001 or ISO 22301 easily and for a minimal cost.
Our Clients
Our Partners
-
Advisera is Exemplar Global Certified TPECS Provider for the IS, QM, EM, TL and AU Competency Units.
-
DNV GL Business Assurance is one of the leading providers of accredited management systems certification.
Advisera is Exemplar Global Certified TPECS Provider for the IS, QM, EM, TL and AU Competency Units.
DNV GL Business Assurance is one of the leading providers of accredited management systems certification.
Explore Advisera
Consultation Center
Consultation Center
Consultation Center
Consultation Center
Consultation Center
Consultation Center
Consultation Center
Consultation Center
Consultation Center
Consultation Center
ISO standards
Copyright © 2022 Advisera Expert Solutions Ltd