ISO 27001 Compliance for Information Security Management
Basenorm centralises ISO 27001 Annex A controls, risk management, documentation and continuous audit preparation using unified controls and governance intelligence.
Automated Annex A Mapping
Implement and maintain ISO 27001 controls with unified governance, automated evidence collection and real-time readiness tracking.
- Annex A:2022 control implementation
- Cross-framework mapping via the Unified Control Library
- Evidence collection from existing systems
- Ownership and responsibility mapping
- Alignment with ISO updates
Annex A Control Families
Organisational
37 controlsPeople
8 controlsPhysical
14 controlsTechnological
34 controlsISO 27001:2022 Total93 controls
ISMS Certification Cycle
Year 2Surveillance
Initial CertYear 0
SurveillanceYear 1
SurveillanceYear 2
RecertificationYear 3
Continuous Certification Readiness
Maintain continuous ISO 27001 certification readiness with real-time control monitoring, automated evidence collection and governance workflows.
- Real-time readiness dashboard
- Recurring task automation
- Evidence completeness tracking
- Policy and document versioning
- Audit package generation
Unified Risk and Governance Alignment
Integrate ISO 27001 risk management with governance workflows, control selection and audit trail documentation.
- ISO 27005 risk assessments
- Control selection workflows
- Risk acceptance governance
- Asset classification mapping
- Governance approvals with audit trails
Risk Treatment Status
ISO 27005Unauthorised access
RSK-001
Residual Risk:
4
Data loss
RSK-002
Residual Risk:
6
System downtime
RSK-003
Residual Risk:
8
12 treated
5 in progress
2 open
Ready to achieve ISO 27001 certification?
Join organisations using Basenorm to automate Annex A controls, evidence collection and continuous certification readiness.