Compliance Guide ISO 27001
Six-month roadmap to help you establish the necessary policies, procedures, and controls to protect your information assets, manage risks, respond to incidents and provide an internal audit.
Partnering with Compleye for your ISO 27001 roadmap can help you save time, avoid costly mistakes, and ensure that your ISMS is effective, efficient, and aligned with your organisation’s objectives.
Duration: 6 months
Two 1:1 Compliance Sessions
35+ Audit proof policy templates
Internal Audit
This is for you if..
➤ You need to get ready to be certified in 6 months.
➤ You have a small team (5-10 team members) who haven’t yet assigned a compliance officer.
➤ You and your team need to understand the why, how, and what of ISO 27001 without an expensive lawyer and thousands of YouTube videos (yawn) explaining it
➤ You have an ISMS team consisting of, at a minimum, CEO/COO and CTO, that will ultimately be responsible and make themselves available for 2 days a month.
Yes? That means the Compliance Guide Package is for you!
Read more below ⇩
At the end of the Compliance Guide
➤ You’ll be able to walk into your external audit with absolute confidence after just 6 months;
➤ You’ll have learnt just about everything you need to know about the ISO 27001 certification;
➤ You’ll have saved time and money by not hiring expensive consultants and lawyers;
➤ You’ll sleep better;
➤ You’ll have an ISMS that’s easy to maintain;
➤ You’ll have experienced and affordable lean compliance officers on speed-dial.
We’ll help you design a tailored ISMS that addresses the risks and requirements of your organisation, and we’ll guide you to implement the ISMS and its controls, ensuring that your organisation meets the requirements of the ISO 27001 standard.
Certification readiness: Last but not least we will prepare you for the ISO 27001 certification external audit, ensuring that you have all the documentation, processes, and controls in place to achieve certification.
See what falls into scope. In this 1:1 Session with one of our Lean Compliance Designers you go over all the components of your organisation. With this X-Ray we can visualise the risks and scope in one image. Watch the video to learn more about our X-Ray.
Our wiki has a wealth of information about the ISO 27001 standard, including its requirements, benefits, and implementation best practices. We call this the Why, How and What. The ISO 27001 wiki is a useful resource for organisations that are implementing or considering implementing ISO 27001 with our Compleye Online Platform, as well as for individuals who are interested in learning more about the standard.
We give you all the auditor-approved templates to apply to your business.
Some of the key ISO 27001 policies include:
➤ Information security policy: This policy outlines the organisation’s commitment to information security and its objectives for implementing an Information Security Management System (ISMS).
➤ Risk management policy: This policy describes the organisation’s approach to identifying, assessing, treating, and monitoring risks to its information assets.
➤ Access control policy: This policy establishes the rules and procedures for granting, managing, and revoking access to information assets and information systems.
➤ Incident management policy: This policy outlines the procedures for responding to and managing information security incidents, including reporting, investigation, and corrective actions.
➤ Business continuity policy: This policy defines the organisation’s approach to ensuring the continuity of critical business processes in the event of a disruption or disaster.
➤ Human resources policy: This policy outlines the rules and procedures for managing the information security responsibilities of employees, contractors, and third-party providers.
➤ Asset management policy: This policy defines the procedures for identifying, classifying, and managing the organisation’s information assets.
➤ Many, many, many, many more, all ready for you to use when you sign up for our DIY Package.
These policies are essential for implementing an effective ISMS and meeting the requirements of the ISO 27001 standard. They provide a framework for ensuring that the organisation’s information assets are protected, risks are managed, and incidents are properly handled. Developing and implementing ISO 27001 policies can be a complex process. We recommend that you seek expert guidance or use pre-developed templates to ensure that the policies are comprehensive and effective.
This is our platform where you can store all evidence, policies and documents, track changes and do what you gotta do to get certified. It’s your ISMS with all the bells and whistles.
Why Compleye?
➤ An online tool (Compleye Online) with a user manual (The Wiki)
➤ A deep understanding of the start-up journey and culture
➤ Lean, Transparent and No-Bullshit way of working
➤ The unheard-of ability to make compliance (almost) fun.
➤ 20+ years of combined experience in Compliance
Compleye automates your compliance processes and teaches you the why, how, and what so you also understand what you are doing!
Fun Facts about Compleye
👩🏻 85% are women
🔥 Growing fast
💻 100% remote company
🌎 10+ different nationalities on the team
🐶 Almost all team members have dogs
Ready to take action?
A free X-Ray session to see what falls in scope
A step-by-step ISO 27001 Roadmap
Our ISO 27001 Wiki will guide you along the road
35+ Audit proof policy templates
Two 1:1 Compliance Sessions per month
The Internal Audit, conducted by Compleye
Access to Compleye Online (our awesome online tool) for 6 months
€ 1500 per month excl. 21% VAT
Contract: 6 Months
FAQ
We don’t like to say things we cannot fulfill! Yes, it is possible to be ready to get ISO 27001 certified in just 6 months. The process of certification involves a range of steps, such as completing an internal audit, assessing compliance, and putting together a statement of applicability. It is essential to have a plan of action in place and it is important to ensure that all of the requirements of the standard are met before submission. But no worries, with our help will be easy peasy 😉
Because we test automation and the latest technology to streamline compliance processes. Also, because our mission is to help startups grow, not make them go broke on creating a solid compliance 😊
To create the compliance components for your business we offer our DIY Clients a Free X-Ray session. With this X-Ray we can visualize the risks and scope in one image!
No way! We understand that startups need to be lean and efficient, which is why we only charge for the features you need. We offer a range of compliance modules that you can mix and match to create a solution that works for you. If you don’t need a certain module, you won’t be charged for it. Our goal is to make compliance affordable and accessible for startups, and that means being flexible with our pricing.
Absolutely! Our platform is designed to be flexible and customizable so that it can fit the specific needs of your business. We offer a range of compliance modules that you can mix and match to create a solution that works for you. If you need something more specific, our team can work with you to create a custom solution that meets your unique needs. So, whether you’re a tech startup or a traditional business, we’ve got you covered.
We believe that startups should be able to afford top-quality compliance tools without breaking the bank. That’s why we offer an affordable and easy-to-use compliance platform that fits within your startup’s budget. Our secret? We leverage automation and the latest technology to streamline compliance processes, so we can pass the savings onto our customers. Plus, our team is made up of compliance experts, not salespeople, so we don’t need to charge high prices to make a profit.
As a compliance platform for startups, we understand the unique needs of new and growing businesses. We know that startups need to focus on their growth and development, not on navigating complex compliance regulations. That’s why we designed our platform to be easy-to-use, affordable, and accessible to startups of all sizes. With Compleye, startups can quickly and easily achieve compliance without sacrificing resources or time.
No experience? No problem! Our platform is designed to be user-friendly and easy-to-use, even if you don’t have any previous experience with compliance. We provide step-by-step guidance throughout the certification roadmap, so you can complete each step with confidence. Plus, our compliance experts are always available to answer any questions you may have.
Not difficult at all! Our platform is designed to be low-maintenance and hassle-free. We handle all updates, maintenance, and security patches on our end, so you don’t have to worry about a thing. Plus, our team of experts is always available to provide support and assistance whenever you need it.