ISO 27001 compliance self-assessment

ISO 27001 - Information Security Management

ISO/IEC 27001 is the most popular international standard specifying the rules for information security management. It defines requirements related to establishing, implementing, monitoring and improving Information Security Management Systems.

Friendly introduction to the standard requirements

The ISO 27001 project in NOR-STA presents in a systematic way the requirements of the standard. They are ordered by areas and specify criteria for the assessment. The review of the standard requirements can be carried out at an individual pace. All the time the system reports the current state of conformance. The requirements set out in the template can be detailed (in the full assessment project) and adapted to the organization’s specifics.

Conformance assessment

You can assess in the systemematic way if the requirements are satisfied and also the maturity level of the information security management process. We use the scale from 0 to 5 to address the the level of the process performance:

0 – activities not performed, results not achieved
1 – activities performed by competent persons
3 – activities performed according to procedures and results are documented
5 – activities monitored and supervised in a systematic way, improved as part of the organization quality management system

The evaluation results can be presented in a web report (html), to an Excel spreadsheet and to a PDF document. The report formatting can be customized with templates.

ISO 27001 self-assessment report

Conformance assessment

The ISO 27001 project in NOR-STA presents in a systematic way the requirements of the standard. They are ordered by areas and specify criteria for the assessment. The review of the standard requirements can be carried out at an individual pace. All the time the system reports the current state of conformance. The requirements set out in the template can be detailed (in the full assessment project) and adapted to the organization’s specifics.

Goal-based approach

The goal-based approach to conformance management gives the possibility to build a tailred conformance model, define a set of well-focused requirements and conduct online assessment. The set of requirements can be adapted to the organization and process specifics. To find more information please refer to the description of the goal-based approach.

Use NOR-STA to manage compliance with ISO 27001:

DEMO

Free online DEMO you can learn how you can assess conformance.

 

Self-assessment

3-month subscription to perform ISO 27001 self-assessment. You can collect data on conformance, make reviews, evaluate conformance and report results.

Price: €69

 

Standard conformance project

12-month subscription for 5 user in ISO 27001 project in NOR-STA. Using the service the users can collect the evidence, extend the conformance template with additional requirements, make reviews and report results.

Price: €600