As mentioned previously, we have now uploaded our ISO 27001 (also known as ISO/IEC 27001:2013) compliance checklist and it is available for free download. Please feel free to grab a copy and share it with anyone you think would benefit.
Designed to assist you in assessing your compliance, the checklist is not a replacement for a formal audit and shouldn’t be used as evidence of compliance. However, this checklist can assist you, or your security professionals:
- to assess your current security measures in a structured way;
- to make sure you that have looked at all the relevant controls;
- to identify areas where your current controls are strong and areas where you can achieve improvements;
- to achieve compliance with the standards;
- to consider what evidence you have that could demonstrate your compliance to an external party.
Additionally, the tool can provide dashboards allowing you to present management information (MI) across your organisation. This shows where you are in your compliance program and how much progress you have achieved. Presenting information in this manner can be beneficial when it comes to winning stakeholder support in your security improvement plan, as well as demonstrating the value added by security.
You can grab the checklist directly (in Excel format) or visit the Security Resources part of our website for this checklist and many more useful security tools and documents. Halkyn Security makes these documents available to help people improve their security and we never demand you log in, or register, for access.
If you want the document in a different format (such as OpenOffice) get in touch and we will be happy to help you. The checklist uses basic office protection (to prevent accidental modification) but we are happy to provide unprotected versions on request.
We have tried to make the checklist easy to use, and it includes a page of instructions to assist users. If you do have any questions, or want to talk through the process then let us know. Our security consultants are experienced in delivering ISO27001 compliant security solutions across a wide range of environments and we love’d love the opportunity to help you improve your security.