CALL US 1-888-553-2256

  • Advisera's toolkits are used by more than 6000 companies worldwide
  • Optimized for small and medium-sized companies
  • Costs up to 80% less than using consultants
  • Expert consultations and unlimited email support available
  • Created by Advisera, the leading independent website for ISO standards

ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit

Implement ISO 27001 & ISO 27017 & ISO 27018 yourself, and do it easily and efficiently with our Documentation Toolkit.


  • 45 document templates – unlimited access to all documents required for ISO 27001 & ISO 27017 & ISO 27018 certification, plus commonly used non-mandatory documents
  • Access to video tutorials
  • Unlimited email support
  • Expert review of a document
  • One hour of live one-on-one online consultations with an ISO 27001 & ISO 27017 & ISO 27018 expert
  • BONUS: 12 months of free access to Conformio, the leading online compliance software

US$ 997

100% secure online billing
AES-128bit SSL safe

How does expert support work?

  1. Our ISO 27001 & ISO 27017 & ISO 27018 expert will meet with you regularly – he will tell you where to start, what the next steps are, and how to resolve any issues you may face. You can meet via Skype, over the telephone, or through any other means at your convenience.
  2. Reach out to us at any time during your implementation project with unlimited email support, and have your questions answered within 24 hours by our experts.
  3. Once you complete your documents, let our experts review them – they’ll provide you with feedback and indicate what needs to be improved.


Our team includes some of the most experienced auditors, trainers and consultants for the ISO 27001 & ISO 22301 & ISO 27018 standards. In addition, we pride ourselves on the communication skills of our expert team, which helps us to establish stable and personal relationships with our clients.

Dejan Kosutic
Lead ISO 27001 Expert

Rhand Leal
ISO 27001 Expert for Brazil

Antonio Jose Segovia
ISO 27001 Expert for
Latin America and Spain


We used the 27001 Academy toolkit to write the company's security & support procedures. The documents received as part of the toolkit served as a good framework for describing the processes in the company and significantly shortened the process of writing the procedures.
Eyal Arbabof
Your documentation has really been a huge help. Our stage 2 audit is on Monday, and you have really helped to plug areas that we were lacking. The content you have is what impressed me the most.
Timothy Cohen
System Administrator at Alpha Systems

Toolkit Features

Toolkit Documents

Look at EVERY template in the ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit – for free! – before making a purchase decision.

Note: Documents are available individually, or as part of the toolkit.
  1. Cloud Security Policy PreviewDetails & purchase
  2. Policy for Data Privacy in the Cloud PreviewDetails & purchase
  3. Procedure for Document and Record Control PreviewDetails & purchase
  4. Procedure for Identification of Requirements PreviewDetails & purchase
  5. List of Legal, Regulatory, Contractual and Other Requirements PreviewDetails & purchase
  6. ISMS Scope Document PreviewDetails & purchase
  7. Information Security Policy PreviewDetails & purchase
  8. Training and Awareness Plan PreviewDetails & purchase
  9. Management Review Minutes PreviewDetails & purchase
  10. Procedure for Corrective Action PreviewDetails & purchase
  11. Corrective Action Form PreviewDetails & purchase
  1. Risk Assessment and Risk Treatment Methodology PreviewDetails & purchase
  2. Risk Assessment Table PreviewDetails & purchase
  3. Risk Treatment Table PreviewDetails & purchase
  4. Risk Assessment and Treatment Report PreviewDetails & purchase
  5. Statement of Applicability PreviewDetails & purchase
  6. Risk Treatment Plan PreviewDetails & purchase
  1. Bring Your Own Device (BYOD) Policy PreviewDetails & purchase
  2. Mobile Device and Teleworking Policy PreviewDetails & purchase
  3. Confidentiality Statement PreviewDetails & purchase
  4. Statement of Acceptance of ISMS Documents PreviewDetails & purchase
  5. Inventory of Assets PreviewDetails & purchase
  6. IT Security Policy PreviewDetails & purchase
  7. Information Classification Policy PreviewDetails & purchase
  8. Access Control Policy PreviewDetails & purchase
  9. Password Policy PreviewDetails & purchase
  10. Policy on the Use of Encryption PreviewDetails & purchase
  11. Clear Desk and Clear Screen Policy PreviewDetails & purchase
  12. Disposal and Destruction Policy PreviewDetails & purchase
  13. Procedures for Working in Secure Areas PreviewDetails & purchase
  14. Security Procedures for IT Department PreviewDetails & purchase
  15. Change Management Policy PreviewDetails & purchase
  16. Backup Policy PreviewDetails & purchase
  17. Information Transfer Policy PreviewDetails & purchase
  18. Secure Development Policy PreviewDetails & purchase
  19. Specification of Information System Requirements PreviewDetails & purchase
  20. Supplier Security Policy PreviewDetails & purchase
  21. Security Clauses for Clients Suppliers and Partners PreviewDetails & purchase
  22. Incident Management Procedure PreviewDetails & purchase
  23. Incident Log PreviewDetails & purchase
  1. Disaster Recovery Plan PreviewDetails & purchase
  1. Internal Audit Procedure PreviewDetails & purchase
  2. Annual Internal Audit Program PreviewDetails & purchase
  3. Internal Audit Report PreviewDetails & purchase
  4. Internal Audit Checklist PreviewDetails & purchase

Step-by-step guidance for your implementation

The toolkit documents are organized to guide you on your implementation path. They’re structured in clearly numbered folders, so that you know where to start, and – after each document is completed – where to go next.

80% complete – guidance for the remaining 20%

We’ve done 80% of the work a consultant would charge you for. Anything that can be prefilled in the documents is already done, and the remaining adaptation you need to do is clearly marked with comments and instructions.

Placeholders guide you where editing is needed

Simply move through the documents, filling in the specifics for your company as instructed. Our experts have even added some instructions on what to enter, to help you move through the implementation as efficiently as possible.

Additional instructions for more specific tasks

Completing some parts of a document might be a challenge for you if you’ve never done this before. In these cases, we’ve added detailed instructions and, where needed, links to articles and video tutorials that will help you understand and complete these sections.

Fully customizable documents

Most companies have a specific design and structure for their official documents. There’s header information, confidentiality level, even prescribed graphic design and fonts. All of our documents are fully customizable, so that you can make them look just the way they should.

All the support you need

ISO 27001/ISO 22301 certification is much more than just documentation. The implementation of the standard needs to be appropriate to your company, and you need to deal with your employees, your management, and your existing processes in an appropriate way.

This is why our experts are on hand with live online support to answer any difficult questions – we can set up a call via Skype, over the telephone, or through any other method convenient for you; or, we can answer your questions via email – whatever suits you best.

[name, job title]

has been appointed project sponsor.

[organization name]

Highlights and advantages of the ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit


45 templates for every required document

Our ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit is available in English, and includes the following ISO 27001 / ISO 27017 / ISO 27018 templates: Procedure for Control of Documents, Information Security Policy, Cloud Security Policy, Policy for Data Privacy in the Cloud, ISMS Scope Document, Risk Assessment Methodology, Risk Assessment Matrix, Security Risk Assessment template, Risk Treatment Plan, Statement of Applicability, Incident Management Procedure, Acceptable Use Policy template, Access Control Policy template, Backup Policy, and many others.

For a complete list of included documents, please click here.

Developed by the experts

27001Academy is renowned for the accuracy and quality of our products and services. This means you can be certain that each template in our toolkit was developed and reviewed by leading experts in ISO 27001, ISO 27017, and ISO 27018. Our documentation templates were designed specifically to take the stress and worry out of your implementation project.


Fully acceptable for certification audit

Our documentation toolkit includes templates for every single document you need to comply with ISO 27001, ISO 27017, and ISO 27018 – all fully acceptable for the certification audit. The toolkit contains other optional policy and procedure templates that are most commonly used for ISO 27001, ISO 27017, and ISO 27018 controls – a list of documents is also included, which clearly marks each document as mandatory or optional, and can be used as an implementation checklist.

Included: Tutorials

When you purchase the toolkit you’ll get one year of free access to all ISO 27001 video tutorials. This way you will not only learn about the basics of the standard, but also get a guided tour on how the documents are to be filled in.


We’ve done most of the work for you – documents are 90% complete

We have already filled in about 90% of the information for you. For most documents, you’ll just need to enter the particulars for your organization: business name, responsible parties, and any other information unique to your company. Each document guides you through the process, including comments on which elements are required, and which are optional.

We take the guesswork out of ISO 27001, ISO 27017, and ISO 27018 documentation, so you can rest assured knowing you’ve completed everything accurately and with the utmost efficiency.


Fully editable documents

Every document is available in either MS Word or MS Excel, making them a breeze to customize for your company. Maintain branding by adding company logos and colors, and edit headers and footers to match your preferred style.


Clear organization and logical structure

The documents are placed in folders in the correct order, so that it’s easy to follow the sequence and be sure that nothing gets missed, and that no one makes mistakes during the implementation. A handy implementation diagram is included to help the project manager understand each step in the process.


Standardized formatting

Each document in the toolkit follows an identical structure and format to help you speed through completion efficiently and accurately. Further, to help you understand relationships between each document, we cross-reference all documents.


Created especially for Small and Medium Businesses

The ISO 27001, ISO 27017, and ISO 27018 Cloud Documentation Toolkit was created specifically for small and medium-sized businesses to reduce the costs (in money and time) of implementation of these standards. With our toolkit, we don’t make you complete every document that a major multi-national corporation would need. Instead, our toolkit contains only the documents needed for YOUR business.

Free webinar

How to use a Documentation Toolkit for the implementation of ISO 27001 / ISO 22301

Webinar designed for companies that are planning to implement ISO 27001 / ISO 22301 using the Do-It-Yourself approach. During this webinar you will be able to see whether the templates, know-how, and support from 27001Academy are applicable to your implementation project.

Watch later

You’ll receive an email with a link to this webinar, so you can continue watching it at a later time.

Ready for the certification audit?

Companies in more than 100 countries have achieved certification with our documents.

  • Toolkit guides you through the implementation
  • Expert support throughout your project
  • Expert review of some of your completed documents
  • Pre-audit expert meeting to make sure everything is in place

ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit:

Right for your business?

Are you small or medium-sized company?
Are you looking to minimize time and cost of implementation?
Are you searching for concise and easy-to-use templates?
We understood your needs, found the answers to your questions, and developed ISO 27001 & ISO 27017 & ISO 27018 Cloud Toolkit especially for your company. Our toolkit doesn’t require completion of every document that a large world-wide corporation needs. Instead, it includes only those documents YOUR business needs.

Download free demo


Toolkit with live
expert support

US$ 997
45 document templates compliant with ISO 27001 & ISO 27017 & ISO 27018
Access to video tutorials
ISO 27001 Gap Analysis Tool
Bonus: Access to Conformio for 12 months
Unlimited email support
1 hour of one-on-one support
with an ISO 27001 & ISO 27017 & ISO 27018 expert
Expert review of 1 completed document

Toolkit with
extended support

US$ 1497
45 document templates compliant with ISO 27001 & ISO 27017 & ISO 27018
Access to video tutorials
ISO 27001 Gap Analysis Tool
Bonus: Access to Conformio for 12 months
Unlimited email support
5 hours of one-on-one support
(a series of online meetings with an ISO 27001 & ISO 27017 & ISO 27018 expert)
Expert review of 5 completed documents


US$ 2497
45 document templates compliant with ISO 27001 & ISO 27017 & ISO 27018
Access to video tutorials
ISO 27001 Gap Analysis Tool
Bonus: Access to Conformio for 12 months
Unlimited email support
15 hours of one-on-one support
(a series of online meetings with an ISO 27001 & ISO 27017 & ISO 27018 expert)
Expert review of 15 completed documents
Pre-audit check workshop (1 hour training on audit preparation with leading ISO 27001 & ISO 27017 & ISO 27018 expert)

BONUS: 12-months of free access to Conformio, leading online software for ISO implementation

When purchasing the ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit you’ll gain the access to:


  • ISO modules included: Document Management System (DMS), Nonconformities and Corrective Actions.
  • Detailed step-by-step task list for implementing ISO 27001
  • Define all yours project tasks, and easily collaborate with up to 20 members of your ISO 27001 implementation team.


Can you really implement ISO 27001 & ISO 27017 & ISO 27018 by yourself?


FAQs: Buying the ISO 27001 & ISO 27017 & ISO 27018 Cloud Documentation Toolkit

When and how will I get the toolkit?

Immediately after the transaction is processed, you will receive an email with a download link. It could not be quicker or simpler.

What payment methods do you accept?

We take all major credit cards, PayPal payment, and we can accept a wire transfer from your bank account.

How do you keep my payment information safe?

We use Secure Socket Layer (SSL) technology, the industry standard. SSL is one of the world’s most secure ways to pay online. Your payment information is encrypted, and then immediately sent to the payment processor. We don’t see your payment information, and we don’t store any details.

Which currencies are accepted?

We accept payment in 50-plus common currencies, including US Dollars, Euros, Swiss Francs, and British Pounds.

What if I want the toolkit in a second language? Is there a discount?

Yes, we will apply a 70% discount on the toolkit in a second language.

I’m just not certain if these documents are what I need. Can I take a look before buying?

Of course! Click on “DOWNLOAD FREE TOOLKIT DEMO” button type in your name and email address, and you can have a free preview of every document before you make your purchase decision. You’ll see how the templates look, and how easy they are to complete.


Dejan Kosutic
Lead ISO 27001/ISO 22301 expert


Get free expert advice to better grow your business


About 27001Academy


27001Academy is one of the Academies of Advisera specializes in helping organizations implement top international standards and frameworks such as EU GDPR, ISO 27001, ISO 9001, ISO 13485, ISO 14001, ISO 45001, IATF 16949, ISO/IEC 17025, AS9100, ISO 20000 and ITIL. Over the years, Advisera has become a global leader in the provision of web-based training and documentation for ISO 27001 (information security management) and ISO 22301 (business continuity management).

Our products are of best-in-class quality. With a proven performance record of successful implementations in more than 100 countries, our world-class customer support ensures success. Read more about the 27001Academy here.


100% Secure Online Billing


We use Secure Socket Layer (SSL) technology, the industry standard and among the best available today for secure online commerce transactions. All of your personal information, including credit card number, name, and address is encrypted so it cannot be read during transmission. You are protected by your credit card company in the case of a fraudulent transaction with any purchase.


AES-128bit SSL safe Privacy Policy

Online payment services are provided by BlueSnap and 2Checkout.



  • Advisera is Exemplar Global Certified TPECS Provider for the IS, QM, EM, TL and AU Competency Units.
  • ITIL® is a registered trade mark of AXELOS Limited. Used under licence of AXELOS Limited. All rights reserved.
  • DNV GL Business Assurance is one of the leading providers of accredited management systems certification.