ISO 27001/2-2022 Version - Statement of Applicability (Excel template (XLSX)) Preview Image

Unlock all preview images: Login Register

ISO 27001/2-2022 Version - Statement of Applicability (Excel XLSX)

File Type: Excel template (XLSX)

$100.00

Add to Cart

BUY WITH CONFIDENCE

Immediate digital download upon purchase.

Lifetime document updates included with purchase.

Fully editable & customizable XLSX document.

Trusted by over 10,000+ organizations.

BENEFITS OF DOCUMENT

Provides you with well-tested Statement of Applicability to comply with the requirements of ISO 27001, Version 2022
Supports IT Consultants in ensuring the best creation of a Statement of Applicability for the new version of ISO 27K-2022 Version
Supports ISO 27 K Consultants in drafting a Statement of Applicability so that they can implement ISO 27K more effectively

DESCRIPTION

This product (ISO 27001/2-2022 Version - Statement of Applicability) is an Excel template (XLSX), which you can download immediately upon purchase.

This spreadsheet describes fully the contents and an example of the controls included in the ISO 27001/2 2022 version Statement of Applicability (SOA). It can be used to create as well as to audit your own SOA. It is made up of 4 parts: Read me; Organizational Controls; People and Physical Controls; and Technological Controls. It also contains an evaluation methos and a total assessment grade for each area or domain of controls. The Statement of Applicability (SOA) is a central, mandatory part of the ISO 27001 standard for Information Security Management Systems and is the main link between the risk assessment & treatment and the implementation of your information security. The SOA explains which of the suggested controls from ISO 27001 Annex A you will apply, and justifies any excluded controls.
The statement of applicability (also known as an SOA) is a document which identifies the controls chosen for your environment, and explains how and why they are appropriate. The SOA is derived from the output of the risk assessment/ risk treatment plan and, if ISO27001 compliance is to be achieved, must directly relate the selected controls back to the original risks they are intended to mitigate.
Normally the controls are selected from ISO27001, but it is possible to also include own controls. A number of sector specific schemes are being introduced which stipulate additional mandatory controls.
The SOA should make reference to the policies, procedures or other documentation or systems through which the selected control will actually manifest. It is also good practice to document the justification of why those controls not selected were excluded.
The following template contains 4 sections, one for each ISO 27001 clause (A.5, A6, A7 and A8).
For each ISO 27001 clause (e.g., Organizational Controls (Clause A5) and control category (e.g., Policies for information security) you must note in each table and entry the fields noted below, as per the template presented next.
TEMPLATE: <Control Title>
Control Description: <description of control as per ISO standard>
(1) Applicable: <YES or No>.
(2) Reason for Exclusion: <Not required to control risk>
(3) Implemented: <YES/NO>
(4) Compliance Control(s) or Measure(s): <Title of compliance control>
(5) Remarks: <Any relevant comments>
(6) Implementation Status: <5= Full implementation and kept up-to-date; 4=Full implementation; 3=Partial implementation; 2=Initial implementation; 1=Exists but not implemented; 0=Inexistent>.

Got a question about the product? Email us at support@flevy.com or ask the author directly by using the "Ask the Author a Question" form. If you cannot view the preview above this document description, go here to view the large preview instead.

Source: Best Practices in ISO 27001, IEC 27002 Excel: ISO 27001/2-2022 Version - Statement of Applicability Excel (XLSX) Spreadsheet, John Kyriazoglou

$100.00

Add to Cart

OVERVIEW

File Type: Excel

(XLSX)

File Size: 45.6 KB

ABOUT THE AUTHOR

Author: John Kyriazoglou

Additional documents from author: 25

John Kyriazoglou obtained a certificate in computer programming and data processing from a technical college, in Hamilton, Canada, a (Hon. ) in Computer Science and with a minor in Economics from the University of Toronto, Canada, also earning a Scholastic award for Academic Excellence in Computer Science. John has worked in Canada, Europe (England, Switzerland, Luxembourg, Greece, etc. [read more]

Ask the Author a Question

Must be logged in

Did you know?

The average daily rate of a McKinsey consultant is $6,625 (not including expenses). The average price of a Flevy document is $65.

Trusted by over 10,000+ Client Organizations

Since 2012, we have provided best practices to over 10,000 businesses and organizations of all sizes, from startups and small businesses to the Fortune 100, in over 130 countries.

Read Customer Testimonials

"Last Sunday morning, I was diligently working on an important presentation for a client and found myself in need of additional content and suitable templates for various types of graphics. Flevy.com proved to be a treasure trove for both content and design at a reasonable price, considering the time I

... [read more]

– M. E., Chief Commercial Officer, International Logistics Service Provider

"My FlevyPro subscription provides me with the most popular frameworks and decks in demand in today’s market. They not only augment my existing consulting and coaching offerings and delivery, but also keep me abreast of the latest trends, inspire new products and service offerings for my practice, and educate me

... [read more]

– Bill Branson, Founder at Strategic Business Architects

"If you are looking for great resources to save time with your business presentations, Flevy is truly a value-added resource. Flevy has done all the work for you and we will continue to utilize Flevy as a source to extract up-to-date information and data for our virtual and onsite presentations!"

– Debbi Saffo, President at The NiKhar Group

"As an Independent Management Consultant, I find Flevy to add great value as a source of best practices, templates and information on new trends. Flevy has matured and the quality and quantity of the library is excellent. Lastly the price charged is reasonable, creating a win-win value for

... [read more]

– Jim Schoen, Principal at FRC Group

"Flevy is now a part of my business routine. I visit Flevy at least 3 times each month.

Flevy has become my preferred learning source, because what it provides is practical, current, and useful in this era where the business world is being rewritten.

In today's environment where there are so

... [read more]

– Omar Hernán Montes Parra, CEO at Quantum SFE

"I have found Flevy to be an amazing resource and library of useful presentations for lean sigma, change management and so many other topics. This has reduced the time I need to spend on preparing for my performance consultation. The library is easily accessible and updates are regularly provided. A wealth of great information."

– Cynthia Howard RN, PhD, Executive Coach at Ei Leadership

"As a consultant requiring up to date and professional material that will be of value and use to my clients, I find Flevy a very reliable resource.

The variety and quality of material available through Flevy offers a very useful and commanding source for information. Using Flevy saves me time, enhances my expertise and ends up being a good decision."

– Dennis Gershowitz, Principal at DG Associates

"I have used FlevyPro for several business applications. It is a great complement to working with expensive consultants. The quality and effectiveness of the tools are of the highest standards."

– Moritz Bernhoerster, Global Sourcing Director at Fortune 500

Customers Also Bought These Documents

ISO 27001 Documentation Toolkit

Excel template, ZIP

Adaptive US Inc.

$455.00

Add to Cart

Customers Also Like These Documents

ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1)

Excel template

John Kyriazoglou

$150.00