The documentation is brilliant. I worked through the BS 25999 package last year, combined with a bit of reading around the subject (mainly from Dejan’s blog!) and we’ve got ourselves a business continuity plan. I’m just starting to do the same now with ISO 27001, and then we’re going to work towards getting both of them certified.

Simon McLean
Managing Director at Click Travel Ltd

Absolutely, the toolkit was fantastic. It has taught me a lot about security measures that I would not have even considered or thought about. The toolkit made the journey a smooth ride. Well worth the money.

Jay Verma
VF Enterprises Ltd

Your documentation toolkit has significantly accelerated the documentation development and helped us understand the formal structure of ISO 27001, and your Online Mentoring service has enabled us to implement the standard in our realistic environment.

The cooperation with you has saved us considerable amount of internal resources (human resources in the first place), so our investment in your documentation and mentoring has paid off. Also, you have provided us with a good overview of what the auditor’s expectations would be and which areas are the most important, so we went through the certification well prepared and with no greater stress.

Goran Djoreski
CEO at Altus IT Ltd

Following the successful implementation of the quality standard ISO 9001 we began with the implementation of the security standard ISO27001. Mr. Kosutic seemed to be an excellent choice based on his long-term experience in the banking sector. Implementation support and other services offered by IS&BCA have ensured transparent project management for all team members, as well as our sponsor. The document templates enabled faster development of documentation and better focus on the subject matter. Our relationship was a very good one and the prices were reasonable. The professional attitude and the highest degree of commitment to our goals have resulted in the successful completion of the project within the set time frame, adapted to Dabar informatika’s capacities and human resources.

Dragomir Perica
CEO at Dabar informatika Ltd

Your documentation has really been a huge help. Our stage 2 audit is on Monday, and you have really helped to plug areas that we were lacking. The content you have is what impressed me the most. While we had all the docs that I purchased from you, yours just felt much more complete.

Timothy Cohen
System Administrator at Alpha Systems

You have helped us immensely over these last few months.

Stephan Lesher
Director of Information Technology, Chief Security Officer at Alpha Systems

I also never had the opportunity to thank you for the quality of the ISO 27001 Toolkit. We used the toolkit and achieved ISO/IEC 27001:2005 certification for our global organization. This recently included extension of our certification to our products and services in Germany, the Netherlands, and the United Kingdom. The Toolkit was easy to implement. We were already certified to ISO 9001:2008, so your webinar “ISO 27001 implementation: How to make it easier using ISO 9001” was invaluable in communicating our alignment with our Corporate Quality Management System. Thanks again!

Bill Lisse
Information Security Officer, OCLC Online Computer Library Center Inc.

Clear, precise, concrete.

Emir Ramic
Head of Information Technology

The documents are well laid out and with our company’s standard formatting they are just falling into place.

Thomas Green

Managed the documentation with ease.

Nisar Khan
Kuwait International Bank

We have a solid basis to build our program now with real teeth to ensure compliance with policies and with NFPA 1600, along with NIST SP 800 series we have a complete program that we can implement.

Thomas Green

Toolkit gives a great base for own documents. It also teaches some really helpful best practices (document structures, helpful comments, etc.).

Christoph Thiel

It helps to stay focused on the key steps and offers a structure for roll out of the project.

Ludo Claes
LC Company

It saved me a lot of the time to write ISMS documents.

Anupong Nutaro
BigFish Enterprise Limited

The toolkit provide me with a fine example of ISMS documentation library. Now I am much easier to imagine the end result and the amount of work.

Roman Kornilov
Russian Federation

Your effort in building a self implementation toolkit is fantabulous.

Parvez Hamza
Senior Risk & Compliance Analyst, Gasco

Just a note to say Thank you. We used your templates to augment our documentation, and our ISO 27001 certification process went well! We have now passed, and are certified.

Joe Raschke
Manager, IT GRC

The toolkit has provided all that I need for BC. Also, Dejan gave his expert advice and help most willingly. I highly recommend anyone needing help in BC & RM to use IS&BCA. Thanks again, Dejan!

Nancy Lee

It has accelerated our ISO27001 deployment by months.

Paul Astle
The Networking People Ltd

Helped me a lot. Very useful and profesional documents. Warm regards from Latin America.

Elder Guerra
Aseguradora Fidelis, S.A.

This information has guided me in certain ways that I thought I was doing proper, and discovered there were easier ways of accomplishing ISO with the proper information in hand.

Tim Johns

To be very honest the toolkit is excellent and has greatly assisted in getting the documents ready though we are an ISO certified in 9001:2008 the many documents required for Risk and Business continuity is great without which I would have to struggle. I would recommend to anyone about the toolkit as it is just excellent for people like us.

Harish Pratap

It has been a great help to our work as consultants formaulacion ICT DRP. It facilitates the management of information and ensures monitoring of international standard. Valuable time that allows us to be more efecientes saves.

Oswaldo Alvarado
BPM Global Solutions S.A.

It provides a structured approach for implementing and managing information security.

Claude LArrivee
Minerva Consulting

Better know which documents are essentials. And that documents are consistent and clean.

Ziemowit Borowski

Script for my bearings and led to have a better understanding of the ISO 22301 and be able to develop and implement quickly. Give us additionally facilitated the construction of processes and procedures with templates from the documentation that comes with the Toolkit.

Jose Fernandez
Calasis S.A. de C.V.

Very well organized and moved through the material and questions efficiently, and at a good pace.

Terry Webster

I wanted to get a better view on the standard and a professional opinion on business continuity process. I got it. Thank you.

Aurelijus Stuknys
Consulting, LT

Very helpful and Dejan was very detailed, organized, and helpful at all times.

Kathy Ebbert

I enjoyed the opportunity to learn about ISO27001 and possible ways we can improve and enhance our data classification program. There were a number or points that were covered that forced me to look at this process in a different way.

James Edgar

As far as I’m concerned, and comparing to how I was before I took this E-Learning Tutorials, I can say that in the ISMS’s (Information Security Management System) implementations, as well as some Risk Management Audits, I’ve participated in, I was always doubtful of what minimum documentation I should present to the certification bodies. With the tips included in this E-Learning, I’ve been able to clarify many doubts because the explanations are much more detailed, step by step, throughout its development. Generally speaking, I can assure this E-Learning not only helped me reinforce my knowledge but also allowed me to grow 100% as auditor and implementer with its methodologies.

Sergio García Anzaldo
CISA, CISM (Toluca, Mexico)

Dejan and his organization, Information Security & Business Continuity Academy, have served us extremely well in providing training, education and consulting around the ISO 27000-series on risk analysis and risk treatment. I was personally so pleased with my training experience that we hired Dejan to deliver two Courses (Risk Management Part 1: Risk assessment methodology and risk assessment process and Risk Management AND Part 2: Risk treatment process, Statement of Applicability and Risk Treatment Plan) to our whole leadership team. Dejan is clearly a subject matter expert on Risk Analysis and Risk Management. His trainings are well designed and superbly and professionally delivered using the GoToTraining platform. Anyone interested in Risk Management in general and the ISO 27001 approach in particular would be very wise to consider Dejan’s programs.

Bob Chaput
CISSP, CHP, CHSS, CEO at Clearwater Compliance LLC



  • Advisera is Exemplar Global Certified TPECS Provider for the IS, QM, EM and AU Competency Units.
  • ITIL® is a registered trade mark of AXELOS Limited. Used under licence of AXELOS Limited. All rights reserved.
  • DNV GL Business Assurance is one of the leading providers of accredited management systems certification.