ISO 27001 Critical Capabilities

Was: $249.00
Now: $149.00
Last Revised::
July 2021
Instant Access Upon Purchase
Adding to cart… The item has been added

Look inside the Kanban:

Work with the Information Security Risk and Compliance team to support the development and updating of your (internal) clients security policies and standards and ensure the ongoing compliance with both regulatory obligations and internally developed policies and standards that are in alignment with industry standards.  


Benefits of the ISO 27001 Kanban 

2389 Ready to use prioritized ISO 27001 requirements:

  • How do you increase information security management automation in the context of the ISO 27001 process model?
  • Does organization has an access control policy that shall be established, documented and reviewed based on business and information security requirement?
  • How does your organization place confidence in the actual information security controls of business partners?
  • Do you have agreement with the suppliers about information security requirement for mitigating the risk associated with suppliers access to your organizations assets?
  • What are the minimum protocols of your organization for information security management standards?
  • Has your organization ever asked business partners to implement information security measures?
  • Are information security policies that provide management direction defined and regularly reviewed?
  • Is the security of information and data exchanged within your organization and with any external entity maintained?
  • Does your organization implement security countermeasures required for information system operation?
  • Do you modify your information security controls in response to changes in risk acceptance criteria?



The Art of Service has identified and prioritized 2389 ISO 27001 critical capabilities and use cases to assess and use. Leaders can select those results that best align with their business needs before implementing a solution.

The Art of Service's Critical Capabilities evaluates and prioritizes hundreds of results to help with the outcome selection process.

This Critical Capabilities Kanban will enable leaders to shortlist hundreds of appropriate results fast, because they are uniquely ready-to-use prioritized, starting with the 'Must Have' category; the most urgent and critical priorities.

This Kanban will help you plan and manage your ISO 27001 roadmap.

  • Transform the data into actionable views for your organization: business data changes, so how you view it should be flexible. Create the perfect view that's right for you.

  • Put your workflows on autopilot: Help your team go faster and focus on what matters by automating your processes. Upload and use the Kanban with your favorite apps and services like Asana, Airtable, Basecamp,, Atlassian, Trello etc.

  • Knock down data silos: Align your teams around a single source of truth with real-time data from different sources. Point. Click. Stay in Sync.

  • Use it's flexible reporting for your unique use case: Whether you're "no-code" or you "know-code", the Kanban is the foundational tool to show what you want to who needs to see it. 


Included in your instant download purchase are the following digital products:

As seen in the Kanban above, the complete 2389 ISO 27001 critical capabilities and use cases, their prioritization, workflows, tagging and questions.


The download is available as an easy to re-use Excel format, which you can use as is, or import in any management tool of your choice, like, Atlassian, Smartsheet, Power BI, Asana, Airtable etc.


Also included is the ISO 27001 critical capabilities Book in PDF format covering all the criteria including ideas for (potential) roles to assign the criteria to. Table of contents:

About The Art of Service 

ISO 27001 Critical Capabilities, Meaningful Metrics And Their Prioritization 


Prioritization Of Requirements 

The Prioritization Categories Are: 

  • Must Have 
  • Should Have 
  • Ought to Have 
  • Might Have 
  • Could Have 

Use In New Product/Service/Process Development  


The Critical ISO 27001 Capabilities And Their Priorities: 

  • Priority - Must Have # 
  • Priority - Should Have #
  • Priority - Ought to Have # 
  • Priority - Might Have # 
  • Priority - Could Have # 



You're in good company. Join:

Trusted by: Eli Lilly, Cardinal Health, Dell Technologies, Delta, Abbott Laboratories, CapB InfoteK, FedEx Services, Bookkeeper360, Nationwide, Advisor Group, Apple, kraken, Sentar, Albertsons Companies, Federal Reserve Bank of San Francisco, Wisconsin Women's Business Initiative Corporation, Platform Science, Totes Isotoner, Palladium Group, Inc., Millers Mutual Group, US Office of Personnel Management, US Bureau of Alcohol, Tobacco, Firearms, and Explosives, US Defense Logistics Agency, AmerisourceBergen, Franklin Energy, Deloitte, TheBest Claims Solutions, Brown & Brown Insurance, Erie Insurance, Auto Club Group, JM Family Enterprises / Home Franchise Concepts, Florida Peninsula Insurance Company, Avantor, Google, Love & Company, CarepathRx, Cummins Inc., Holden Advisors, BGB Group, Federal Advisory Partners, TransUnion, ICF, Fidelity Investments, Gro Intelligence Careers, NextGroup, University of Wisconsin–Madison, Armison Tech, Alion Science and Technology, Orbia, ERM Group, Avery Dennison, Envelop Group, Kroll, OhioHealth, Columbia University, SLR Consulting, CohnReznick, Brown Advisory, RE Tech Advisors, MetLife, StratX IT Solutions, LLC, BMO Harris Bank, Adobe, Addison Group, JLL, Marsh, Lazard Ltd., Société Générale, Morgan Stanley, BNP Paribas, Carrington Mortgage Holdings, LLC, Blue Cross and Blue Shield of North Carolina, McDonald's Corporation, UNITED PARCEL SERVICE, DoorDash, Chubb INA Holdings Inc., L3Harris Technologies, Omnicom Health Group, DXC Technology, State of Maryland, ELEVI Associates





Videos Hide Videos Show Videos