- Documentation
See our product tour or contact our main ISO 27001/22301 expert who is here to assist you in your implementation.
- Books
SECURE & SIMPLE: A SMALL-BUSINESS GUIDE TO IMPLEMENTING ISO 27001 ON YOUR OWN
In this book Dejan Kosutic, an author and experienced information security consultant, is giving away all his practical know-how on successful ISO 27001 implementation. No matter if you’re new or experienced in the field; this book gives you everything you will ever need to implement ISO 27001 on your own.
ISO 27001 Risk Management in Plain English
This book is based on an excerpt from Dejan Kosutic's previous book Secure & Simple. It provides a quick read for people who are focused solely on risk management, and don’t have the time (or need) to read a comprehensive book about ISO 27001. It has one aim in mind: to give you the knowledge ...
ISO 27001 Annex A Controls in Plain English
In this book Dejan Kosutic, an author and experienced information security consultant, is giving away his practical know-how ISO 27001 security controls. No matter if you are new or experienced in the field, this book give you everything you will ever need to learn more about security controls.
PREPARING FOR ISO CERTIFICATION AUDIT: A PLAIN ENGLISH GUIDE
In this book Dejan Kosutic, an author and experienced ISO consultant, is giving away his practical know-how on preparing for ISO certification audits. No matter if you are new or experienced in the field, this book gives you everything you will ever need to learn more about certification audits.
Managing ISO Documentation: A Plain English Guide
In this book Dejan Kosutic, an author and experienced ISO consultant, is giving away his practical know-how on managing documentation. No matter if you are new or experienced in the field, this book gives you everything you will ever need to learn on how to handle ISO documents.
Preparations for the ISO Implementation Project: A Plain English Guide
In this book Dejan Kosutic, an author and experienced ISO consultant, is giving away his practical know-how on preparing for ISO implementation. No matter if you are new or experienced in the field, this book gives you everything you will ever need to learn about preparations for ISO implementation projects.
ISO Internal Audit: A Plain English Guide
In this book Dejan Kosutic, an author and experienced ISO consultant, is giving away his practical know-how on ISO internal audits. No matter if you are new or experienced in the field, this book gives you everything you will ever need to learn and more about internal audits.
BECOMING RESILIENT: THE DEFINITIVE GUIDE TO ISO 22301 IMPLEMENTATION
Author and experienced business continuity consultant Dejan Kosutic has written this book with one goal in mind: to give you the knowledge and practical step-by-step process you need to successfully implement ISO 22301. Without any stress, hassle or headaches.
FREE eBOOK: 9 STEPS TO CYBERSECURITY
9 Steps to Cybersecurity from expert Dejan Kosutic is a free eBook designed specifically to take you through all cybersecurity basics in an easy-to-understand and easy-to-digest format. You will learn how to plan cybersecurity implementation from top-level management perspective.
- eTRAINING
ISO 27001:2013 FOUNDATIONS COURSE
Learn everything you need to know about ISO 27001, including all the requirements and best practices for compliance. This online course is made for beginners. No prior knowledge in information security and ISO standards is needed.
ISO 27001:2013 INTERNAL AUDITOR COURSE
In this online course you’ll learn all the requirements and best practices of ISO 27001, but also how to perform an internal audit in your company. The course is made for beginners. No prior knowledge in information security and ISO standards is needed.
Learn smarter and save money at the same time! Take the ISO 27001 course online, at your own tempo. You can learn and rehearse completely for free. You will only pay for the exam, if you need it.
- Optimized for small and medium-sized companies
- Costs up to 80% less than using consultants
- Expert consultations and unlimited email support available
- Created by Advisera, the leading independent website for ISO standards
ISO 27001 & ISO 22301 Premium Documentation Toolkit
Implement ISO 27001 & ISO 22301 yourself, and do it easily and efficiently with our Documentation Toolkit.
Can you really implement ISO 27001 & ISO 22301 by yourself?
Simple and secure payment and delivery
How does expert support work?
- Our ISO 27001 & ISO 22301 expert will meet with you regularly – he will tell you where to start, what the next steps are, and how to resolve any issues you may face. You can meet via Skype, over the telephone, or through any other means at your convenience.
- Reach out to us at any time during your implementation project with unlimited email support, and have your questions answered within 24 hours by our experts.
- Once you complete your documents, let our experts review them – they’ll provide you with feedback and indicate what needs to be improved.
Here’s your ISO 27001 & ISO 22301 expert
Dejan holds a number of certifications, including Certified Management Consultant, ISO 27001 Lead Auditor, ISO 9001 Lead Auditor, and Associate Business Continuity Professional.
Dejan leads our team in managing several websites that specialize in supporting ISO and IT professionals in their understanding and successful implementation of top international standards. Dejan earned his MBA from Henley Management College, and has extensive experience in investment, insurance, and banking. He is renowned for his expertise in international standards for business continuity and information security – ISO 22301 & ISO 27001 – and for authoring several related web tutorials, documentation toolkits and books.
Dejan Kosutic
ISO 27001 & ISO 22301 expert
Your documentation has really been a huge help. Our stage 2 audit is on Monday, and you have really helped to plug areas that we were lacking. The content you have is what impressed me the most.
System Administrator at Alpha Systems
Toolkit Documents
Look at EVERY template in the ISO 27001 & ISO 22301 Premium Documentation Toolkit – for free! – before making a purchase decision.
- Risk Assessment and Risk Treatment Methodology View Document
- Risk Assessment Table View Document
- Risk Treatment Table View Document
- Risk Assessment and Treatment Report View Document
- Statement of Applicability View Document
- Risk Treatment Plan View Document
- Procedure for Document and Record Control View Document
- Procedure for Identification of Requirements View Document
- List of Legal, Regulatory, Contractual and Other Requirements View Document
- ISMS Scope Document View Document
- Information Security Policy View Document
- Training and Awareness Plan View Document
- Management Review Minutes View Document
- Procedure for Corrective Action View Document
- Corrective Action Form View Document
- Bring Your Own Device (BYOD) Policy View Document
- Mobile Device and Teleworking Policy View Document
- Confidentiality Statement View Document
- Statement of Acceptance of ISMS Documents View Document
- Inventory of Assets View Document
- Acceptable Use Policy View Document
- Information Classification Policy View Document
- Access Control Policy View Document
- Password Policy View Document
- Policy on the Use of Cryptographic Controls View Document
- Clear Desk and Clear Screen Policy View Document
- Disposal and Destruction Policy View Document
- Procedures for Working in Secure Areas View Document
- Operating Procedures for Information and Communication Technology View Document
- Change Management Policy View Document
- Backup Policy View Document
- Information Transfer Policy View Document
- Secure Development Policy View Document
- Specification of Information System Requirements View Document
- Supplier Security Policy View Document
- Security Clauses for Suppliers and Partners View Document
- Incident Management Procedure View Document
- Incident Log View Document
- Business Continuity Policy View Document
- Business Impact Analysis Methodology View Document
- Business Impact Analysis Questionnaire View Document
- Business Continuity Strategy View Document
- List of Activities View Document
- Recovery Priorities for Activities View Document
- Recovery Time Objectives for Activities View Document
- Examples of Disruptive Incident Scenarios View Document
- Preparation Plan for Business Continuity View Document
- Activity Recovery Strategy View Document
- Business Continuity Plan View Document
- Incident Response Plan View Document
- Incident Log View Document
- List of Business Continuity Sites View Document
- Transportation Plan View Document
- Key Contacts View Document
- Disaster Recovery Plan View Document
- Activity Recovery Plan View Document
- Exercising and Testing Plan View Document
- Form – Exercising and Testing Report View Document
- BCMS Maintenance and Review Plan View Document
- Post-incident Review Form View Document
- Internal Audit Procedure View Document
- Annual Internal Audit Program View Document
- Internal Audit Report View Document
- Internal Audit Checklist View Document
Step-by-step guidance for your implementation
The toolkit documents are organized to guide you on your implementation path. They’re structured in clearly numbered folders, so that you know where to start, and – after each document is completed – where to go next.
80% complete – guidance for the remaining 20%
We’ve done 80% of the work a consultant would charge you for. Anything that can be prefilled in the documents is already done, and the remaining adaptation you need to do is clearly marked with comments and instructions.
Placeholders guide you where editing is needed
Simply move through the documents, filling in the specifics for your company as instructed. Our experts have even added some instructions on what to enter, to help you move through the implementation as efficiently as possible.
Additional instructions for more specific tasks
Completing some parts of a document might be a challenge for you if you’ve never done this before. In these cases, we’ve added detailed instructions and, where needed, links to articles and video tutorials that will help you understand and complete these sections.
Fully customizable documents
Most companies have a specific design and structure for their official documents. There’s header information, confidentiality level, even prescribed graphic design and fonts. All of our documents are fully customizable, so that you can make them look just the way they should.
All the support you need
ISO 27001/ISO 22301 certification is much more than just documentation. The implementation of the standard needs to be appropriate to your company, and you need to deal with your employees, your management, and your existing processes in an appropriate way.
This is why our experts are on hand with live online support to answer any difficult questions – we can set up a call via Skype, over the telephone, or through any other method convenient for you; or, we can answer your questions via email – whatever suits you best.
Highlights and advantages of the ISO 27001 & ISO 22301 Premium Documentation Toolkit
63 templates for every required document
The Toolkit is available in English, German, Dutch, Spanish, Portuguese and Croatian, and includes the following ISO 27001 / BS 25999 / ISO 22301 templates: Procedure for Control of Documents, Information Security Policy, ISMS Scope Document, Risk Assessment Methodology, Risk Assessment Matrix, Security Risk Assessment template, Risk Treatment Plan, Statement of Applicability, Incident Management Policy, Business Impact Analysis Questionnaire, Business Continuity Plan template, Incident Response Plan, Acceptable Use Policy template, Network Security Policy template, Access Control Policy template, Backup Policy, and many others – click here to see the full list of ISO 27001 / ISO 22301 documents.
Developed by the experts
27001Academy is renowned for the accuracy and quality of our products and services. This means you can be certain that each template in our toolkit was developed and reviewed by leading experts in ISO 27001 & ISO 22301. Our documentation templates were designed specifically to take the stress and worry out of your implementation project.
Fully acceptable for certification audit
Our documentation toolkit includes templates for every single document you need to comply with ISO 27001 and ISO 22301 – all fully acceptable for certification audit. The Toolkit contains other optional policy and procedure templates that are most commonly used for ISO 27001 Annex A controls – a list of documents is also included, which clearly marks each document as mandatory or optional, and can be used as an ISO 27001 checklist.
Included: Tutorials
When you purchase the Toolkit you’ll get 1 year of free access to all video tutorials and webinars on demand. This way you will not only learn about the basics of ISO 27001 and ISO 22301, but also get a guided tour on how the documents are to be filled in.
We already took away most of the headache – by completing 90% of the documents for you
We’ve completed most of the documents already, only leaving you about 10% to finish. In most cases, you will only have to fill in the specifics for your company, like company name, people responsible, and other particulars. Every template offers step-by-step guidance, and even tells you which parts are required, and which are merely nice to have.
We take the questions and worry out of implementing ISO 27001 and ISO 22301, so you always know that documents are complete and accurate.
Fully customizable documents
Each document is available in user-friendly MS Word or MS Excel, so they’re simple to tailor to the needs of your organization. Showcase your brand by inserting your logos and color palette, and change headers and footers to complement your in-house style.
Clear organization, logical structure
The documents are placed in folders in the correct order, so that it’s easy to follow the sequence and be sure that nothing gets missed, and that no one makes mistakes during the implementation. A handy implementation diagram is included to help the project manager understand each step in the process.
Consistent formatting
All templates in the toolkit conform to a standardized structure and format, helping you to quickly and efficiently complete the process. In addition, so that relationships between the documents are clear, we cross-reference related documents.
Optimized for Small to Medium-sized Businesses
The ISO 27001 & ISO 22301 Toolkit was developed especially for small to mid-sized businesses to minimize the time and costs of implementation. Our toolkit doesn’t require completion of every document that a large world-wide corporation needs. Instead, it includes only those documents YOUR business needs.
Free webinar
How to use a Documentation Toolkit for the implementation of ISO 27001
Webinar designed for companies that are planning to implement ISO 27001 using the Do-It-Yourself approach. During this webinar you will be able to see whether the templates, know-how, and support from 27001Academy are applicable to your implementation project.
- Chapter listDuration
- 3 options for ISO 27001 implementation4m 16s
- Structure of the toolkit7m 37s
- Documents included in the toolkit3m 34s
- Support included in the toolkit11m 46s
- Which types of companies the toolkit is made for3m 03s
- Biggest challenges with ISO 270017m 10s
You’ll receive an email with a link to this webinar, so you can continue watching it at a later time.
Toolkit Features
Overview
- Author – Dejan Kosutic
- Compliant with – ISO/IEC 27001 2013 revision and ISO 22301 2012 revision
- Number of documents – 63
- Format – Microsoft Office 2007 / 2008 / 2010 / 2011 / 2013 / 2016
- Documentation language – Available in English, Deutsch, Español, Nederlands, Hrvatski, Português, Français, Русский, Polski
- Free upgrades – Within 12 months of purchase
- Optimized for – Small and medium-sized organizations
Documentation
- Documentation fully editable? – Yes. You can adapt any document by entering specific information for your organization.
- Acceptable for ISO 27001 & ISO 22301 certification audit? – All documents required by ISO/IEC 27001 2013 revision and ISO 22301 2012 revision are included, plus other optional policies and procedures that are most commonly used.
- Guidelines – An average of 20 comments per template guiding you on what to fill out.
- Delivery – Documents are available immediately after payment.
Expert support
- Project kick-off – initial meeting with an expert to help you start your project
- Implementation support – series of live one-on-one online meetings with an expert
- Document review – expert review of your completed documents
- Pre-audit check – verification if a company is ready for the certification
- Tutorials included – 1 year free access to all video tutorials and webinars on demand
- Unlimited email support
Ready for the certification audit
Companies in more than 100 countries have achieved certification with our documents.
- Toolkit guides you through the implementation
- Expert support throughout your project
- Expert review of some of your completed documents
- Pre-audit expert meeting to make sure everything is in place
ISO 27001 & ISO 22301 Premium Documentation Toolkit:
Right for your business?
The ISO 27001 & ISO 22301 Premium Documentation Toolkit was developed especially for small to mid-sized businesses to minimize the time and costs of implementation. Our toolkit doesn’t require completion of every document that a large world-wide corporation needs. Instead, it includes only those documents YOUR business needs.
Compare toolkit options
Toolkit with live
expert support
US$ 997with an ISO 27001 & ISO 22301 expert
Toolkit with
extended support
US$ 1497POWER TOOLKIT
US$ 2497BONUS: 12-months of free access to Conformio, leading online software for ISO implementation (save US$ 948)
When purchasing the ISO 27001 & ISO 22301 Premium Documentation Toolkit you’ll gain the access to:
- ISO modules included: Document Management System (DMS), Nonconformities and Corrective Actions.
- Detailed step-by-step task list for implementing ISO 27001
- Define all yours project tasks, and easily collaborate with up to 20 members of your ISO 27001 implementation team.
FAQs: Buying the ISO 27001 & ISO 22301 Premium Documentation Toolkit
When and how will I get the toolkit?
We are delivering this toolkit through our Conformio document management system. After your payment is processed you will receive an e-mail with the access to your Conformio account.
What payment methods do you accept?
We take all major credit cards, PayPal payment, and we can accept a wire transfer from your bank account.
How do you keep my payment information safe?
We use Secure Socket Layer (SSL) technology, the industry standard. SSL is one of the world’s most secure ways to pay online. Your payment information is encrypted, and then immediately sent to the payment processor. We don’t see your payment information, and we don’t store any details.
Which currencies are accepted?
We accept payment in 50-plus common currencies, including US Dollars, Euros, Swiss Francs, and British Pounds.
What if I want the toolkit in a second language? Is there a discount?
Yes, we will apply a 70% discount on the toolkit in a second language.
I’m just not certain if these documents are what I need. Can I take a look before buying?
Of course! Click on “DOWNLOAD FREE TOOLKIT DEMO” button type in your name and email address, and you can have a free preview of every document before you make your purchase decision. You’ll see how the templates look, and how easy they are to complete.
Dejan Kosutic
ISO 27001/ISO 22301 expert
NOT SURE WHICH IS THE BEST OPTION FOR YOU?
Get free expert advice to better grow your business
SCHEDULE FREE CONSULTATIONAbout 27001Academy
27001Academy is one of the Academies of Advisera.com. Advisera specializes in helping organizations implement top international standards and frameworks such as ISO 27001, ISO 9001, ISO 13485, ISO 14001, OHSAS 18001, IATF 16949, AS9100, ISO 20000 and ITIL. Over the years, Advisera has become a global leader in the provision of web-based training and documentation for ISO 27001 (information security management) and ISO 22301 (business continuity management).
Our products are of best-in-class quality. With a proven performance record of successful implementations in more than 100 countries, our world-class customer support ensures success. Read more about the 27001Academy here.
We use Secure Socket Layer (SSL) technology, the industry standard and among the best available today for secure online commerce transactions. All of your personal information, including credit card number, name, and address is encrypted so it cannot be read during transmission. You are protected by your credit card company in the case of a fraudulent transaction with any purchase.
AES-128bit SSL safe Privacy Policy
Online payment services are provided by BlueSnap and Avangate.
OUR PARTNERS
- Exemplar Global (formerly RABQSA) is leading international
authority in certification of training providers. - ITIL® is a registered trade mark of AXELOS Limited.
Used under licence of AXELOS Limited. All rights reserved. - DNV GL Business Assurance is one of the leading providers of
accredited management systems certification.
Or call us directly
International calls
+1 (646) 759 9933