Show me desktop version

Documentation Tutorial: How to Write ISO 27001 Statement of Applicability

Learn how to create the information security profile of your organization

Not many people understand that by creating the Statement of Applicability they are creating the security profile of their organization – this is one of the most important documents in ISO 27001, certainly the one certification auditors pay great attention to.

Dejan Kosutic, one of the leading ISO 27001 experts, explains which elements of the Statement of Applicability are mandatory according to ISO 27001 and shows how to fill in each of these elements using the document template.

This unique tutorial will teach you what the real purpose of this document is, what the certification auditors will look for, and how it can help you in your ISO 27001 implementation.


Preview of chapters #1, #4 and #7:



ISO 27001 Free Downloads

Target audience: Companies that have finished their risk assessment and treatment, before they start writing the Risk Treatment Plan.
Documentation presented In video: Statement of Applicability
Language: English
Presenter: Dejan Kosutic
Access: Available as part of the toolkits listed below
Duration: 27m 7s
Format: Streaming video (delivered online)
Code: 27001-VT-EN-108


Chapter List


1. Introduction

1m 47s

2. ISO 27001 requirements

4m 1s

3. Structure of the Statement of Applicability template

2m 39s

4. The process of information gathering

2m 0s

5. Inputs for the Statement of Applicability

1m 10s

6. Options for the Statement of Applicability

3m 17s

7. Filling in the Statement of Applicability document

12m 13s


See All Tutorials

About 27001Academy

27001Academy is one of the Academies of Advisera specializes in helping organizations implement top international standards and frameworks such as ISO 27001, ISO 9001, ISO 14001, OHSAS 18001, IATF 16949, AS9100, ISO 20000 and ITIL. Over the years, Advisera has become a global leader in the provision of web-based training and documentation for ISO 27001 (information security management) and ISO 22301 (business continuity management).

Our products are of best-in-class quality. With a proven performance record of successful implementations in more than 100 countries, our world-class customer support ensures success. Read more about the 27001Academy here.



  • Exemplar Global (formerly RABQSA) is leading international
    authority in certification of training providers.
  • ITIL® is a registered trade mark of AXELOS Limited.
    Used under licence of AXELOS Limited. All rights reserved.
  • DNV GL Business Assurance is one of the leading providers of
    accredited management systems certification.
Request callback
Request callback

Or call us directly

International calls
+1 (646) 759 9933