Unlock all 19 preview images:
ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel XLSX)
Excel (XLSX)
BENEFITS OF DOCUMENT
- Provides a framework for assessing the implementation of the information security controls of the new ISO 27K Information Security Controls, 2022 Version
- Supports IT Consultants in ensuring the best implementation of information security controls according to the new version of ISO 27K-2022 Version
DESCRIPTION
This product (ISO 27001/27002 [2022] - Security Audit Questionnaires [Tool 1]) is an Excel template (XLSX), which you can download immediately upon purchase.
This tool (set of spreadsheets) contains 5 parts with 800 questions and an evaluation method, for all control issues and areas (over 93) of the ISO 27K 2022 Version on all aspects of information security, as defined in this ISO standard.
These questionnaires may be used to support your efforts in assessing whether your company, organization or business function or department (herein ‘company') complies with the requirements of ISO Security standard ISO 27001/27002: 2022 version.
Contents
PART 1: README: Description of the spreadsheet and summary of results
PART 2: ISO 27K Mandatory Requirements (Clause 4 to 10): 27 + items, 68 questions
PART 3: ISO 27K Annex A: Organizational Controls (Clause A5): 37 controls, 302 questions
PART 4: This includes:
4.1 ISO 27K Annex A: People Controls (Clause A6): 8 controls, 76 questions
4.2 ISO 27K Annex A: Physical Controls (Clause A7): 14 controls, 74 questions
PART 5: ISO 27K Annex A: Technological Controls (Clause A8): 34 controls, 280 questions
Note: A set of implantation measures (assessment guidance, plans, policies, procedures, etc.) for each information security control is included in another tool. These measures, in a form of a word document, for each set of ISO 27001/27002 information security controls, are included in the tool titled ‘ISO 27K-2022 Version- Security Audit Questionnaires (Tool 2)'. This guidance and the associated policies, plans and procedures may assist you and support you in implementing the required information security controls better.
A Statement of Applicability (SOA) is included in another tool titled ‘ISO 27K-2022 Version- Statement of Applicability (SOA)'.
This comprehensive tool also includes detailed evaluation summaries for each control area, providing a clear snapshot of your organization's compliance status. The structured format allows for easy navigation and quick reference, ensuring that all critical aspects of information security are thoroughly assessed. Tailored for busy executives, this tool simplifies the audit process, enabling you to identify gaps and implement corrective actions efficiently. The inclusion of perfect scores and evaluation grades offers a quantifiable measure of your security posture, making it easier to communicate findings to stakeholders.
Got a question about the product? Email us at support@flevy.com or ask the author directly by using the "Ask the Author a Question" form. If you cannot view the preview above this document description, go here to view the large preview instead.
Source: Best Practices in ISO 27001, ISO 27002 Excel: ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) Excel (XLSX) Spreadsheet, John Kyriazoglou
