Check out our FREE Resources page – Download complimentary business frameworks, PowerPoint templates, whitepapers, and more.

ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1)   Excel template (XLSX)

ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel template (XLSX)) Preview Image ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel template (XLSX)) Preview Image ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel template (XLSX)) Preview Image ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel template (XLSX)) Preview Image ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel template (XLSX)) Preview Image ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel template (XLSX)) Preview Image Log in to unlock full preview.
Arrow   Unlock all 20 preview images:   Login Register

ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) (Excel XLSX)

File Type: Excel template (XLSX)

Top 250 Best Practice $150.00

Add to Cart


Immediate digital download upon purchase.
Lifetime document updates included with purchase.
Fully editable & customizable XLSX document.
Trusted by over 10,000+ organizations.


  1. Provides a framework for assessing the implementation of the information security controls of the new ISO 27K Information Security Controls, 2022 Version
  2. Supports IT Consultants in ensuring the best implementation of information security controls according to the new version of ISO 27K-2022 Version


This product (ISO 27001/27002 [2022] - Security Audit Questionnaires [Tool 1]) is an Excel template (XLSX), which you can download immediately upon purchase.

This tool (set of spreadsheets) contains 5 parts with 800 questions and an evaluation method, for all control issues and areas (over 93) of the ISO 27K 2022 Version on all aspects of information security, as defined in this ISO standard.

These questionnaires may be used to support your efforts in assessing whether your company, organization or business function or department (herein ‘company') complies with the requirements of ISO Security standard ISO 27001/27002: 2022 version.

PART 1: README: Description of the spreadsheet and summary of results
PART 2: ISO 27K Mandatory Requirements (Clause 4 to 10): 27 + items, 68 questions
PART 3: ISO 27K Annex A: Organizational Controls (Clause A5): 37 controls, 302 questions
PART 4: This includes:
4.1 ISO 27K Annex A: People Controls (Clause A6): 8 controls, 76 questions
4.2 ISO 27K Annex A: Physical Controls (Clause A7): 14 controls, 74 questions
PART 5: ISO 27K Annex A: Technological Controls (Clause A8): 34 controls, 280 questions

Note: A set of implantation measures (assessment guidance, plans, policies, procedures, etc.) for each information security control is included in another tool. These measures, in a form of a word document, for each set of ISO 27001/27002 information security controls, are included in the tool titled ‘ISO 27K-2022 Version- Security Audit Questionnaires (Tool 2)'. This guidance and the associated policies, plans and procedures may assist you and support you in implementing the required information security controls better.
A Statement of Applicability (SOA) is included in another tool titled ‘ISO 27K-2022 Version- Statement of Applicability (SOA)'.

This comprehensive tool also includes detailed evaluation summaries for each control area, providing a clear snapshot of your organization's compliance status. The structured format allows for easy navigation and quick reference, ensuring that all critical aspects of information security are thoroughly assessed. Tailored for busy executives, this tool simplifies the audit process, enabling you to identify gaps and implement corrective actions efficiently. The inclusion of perfect scores and evaluation grades offers a quantifiable measure of your security posture, making it easier to communicate findings to stakeholders.

Got a question about the product? Email us at or ask the author directly by using the "Ask the Author a Question" form. If you cannot view the preview above this document description, go here to view the large preview instead.

Source: Best Practices in ISO 27001, ISO 27002 Excel: ISO 27001/27002 (2022) - Security Audit Questionnaires (Tool 1) Excel (XLSX) Spreadsheet, John Kyriazoglou


Add to Cart


File Type: Excel xlsx (XLSX)
File Size: 96.2 KB


Additional documents from author: 25

John Kyriazoglou obtained a certificate in computer programming and data processing from a technical college, in Hamilton, Canada, a (Hon. ) in Computer Science and with a minor in Economics from the University of Toronto, Canada, also earning a Scholastic award for Academic Excellence in Computer Science. John has worked in Canada, Europe (England, Switzerland, Luxembourg, Greece, etc. [read more]

Ask the Author a Question

Must be logged in

Did you know?
The average daily rate of a McKinsey consultant is $6,625 (not including expenses). The average price of a Flevy document is $65.

Trusted by over 10,000+ Client Organizations
Since 2012, we have provided best practices to over 10,000 businesses and organizations of all sizes, from startups and small businesses to the Fortune 100, in over 130 countries.
AT&T GE Cisco Intel IBM Coke Dell Toyota HP Nike Samsung Microsoft Astrazeneca JP Morgan KPMG Walgreens Walmart 3M Kaiser Oracle SAP Google E&Y Volvo Bosch Merck Fedex Shell Amgen Eli Lilly Roche AIG Abbott Amazon PwC T-Mobile Broadcom Bayer Pearson Titleist ConEd Pfizer NTT Data Schwab

Read Customer Testimonials

Customers Also Bought These Documents

Customers Also Like These Documents

Related Management Topics

ISO 27001 IEC 27002 Digital Transformation Analytics Human Resources Digital Leadership Business Ethics Business Continuity Planning Cyber Security

Download our FREE Digital Transformation Templates

Download our free compilation of 50+ Digital Transformation slides and templates. DX concepts covered include Digital Leadership, Digital Maturity, Digital Value Chain, Customer Experience, Customer Journey, RPA, etc.