Skip to main content
Image coming soon

ISO 27001:2022 Evidence & Implementation Kit

$249.00
Adding to cart… The item has been added
ISO/IEC 27001:2022 · Evidence & Implementation Kit
Walk into your ISO 27001 audit ready, without building 93 controls from a blank page.
Every Annex A control handed to you as an adopt-ready document, with the exact evidence your auditor will ask for and the gap they most often fail organizations on. You edit, you attach the evidence, you pass.
Audit-ready in a weekend, not a quarter.

Here is the honest situation. You already understand ISO 27001. The problem is not knowledge, it is the mountain of documentation: the ISMS, the Statement of Applicability, the risk assessment, 93 controls worth of policies, and the evidence an auditor will demand, all due this quarter. A consultant charges twenty thousand dollars and up. Doing it yourself is two hundred hours of blank pages.

This Kit removes the mountain. It is the complete ISO 27001:2022 documentation set, already written, that you personalize in a weekend.

What you get, the moment you buy

93
Control artifacts, ready to edit. Every Annex A control as real policy and procedure text. Swap in your organization, owners, systems and cadences. No blank page, no guessing what a control means.
93
Auditor evidence checklists. For each control, the specific artifacts an auditor asks to see, plus the single gap they most often raise. Collect, tick, walk in ready.
1
Statement of Applicability, pre-built. All 93 controls in a working spreadsheet, ready to set applicability, justification, status and evidence location. Auditors ask for this first.
1
Gap & Readiness Assessment. Score each control and the workbook tells you your audit readiness as a single percentage, and exactly what to fix next.

Plus the mandatory ISMS requirements (Clauses 4 to 10) and the list of documents an auditor must see. Delivered as editable Word and Excel files. Nothing is sampled. Nothing is a locked demo.

What one control looks like

This is A.5.15 Access control, exactly as it appears in the Kit. All 93 are built to this depth.

A.5.15 Access control
Adopt this

[Organization] establishes an access control policy based on business and security requirements, applying least privilege and need-to-know. Access rules are defined for each [in-scope system] and cover physical and logical access. The policy specifies role-based access, approval requirements, and periodic review of granted access.

Evidence your auditor will ask for
  • Access control policy document
  • Role-to-permission mapping for key systems
  • Access request and approval tickets
  • Periodic access review records with sign-off
Common gap they fail you on: Access is granted broadly by default rather than by least privilege, and no periodic review detects the accumulated excess.

Why this is not another template pack

  • The evidence is the point. Generic templates give you words. This tells you exactly what an auditor will ask to see, and the finding they raise, for every single control. That is what gets you through the audit.
  • Built on a mapped compliance corpus, not one person's opinion. The evidence and the cross-framework links come from a graph of thousands of controls mapped across standards.
  • Complete, never sampled. All 93 Annex A controls and the mandatory Clauses 4 to 10. You are not left to fill the hard 20 percent yourself.
  • It compounds. The controls you document here already count toward SOC 2, ISO 27701 and more. Your next certification starts most of the way done.

Who buys this

Information security managers, CISOs, GRC and compliance leads, IT managers and consultants who have to produce an ISO 27001 ISMS and pass the audit, and who would rather personalize a proven set than start from nothing. Whether this is your first certification or your recertification, you save weeks.

By the end of the weekend you will have
✓  A drafted ISMS aligned to ISO 27001:2022
✓  A completed Statement of Applicability
✓  Every control documented, nothing missed
✓  A clear evidence checklist per control
✓  A readiness percentage and a fix list
✓  The gaps closed before the auditor finds them

Common questions

Is it really editable? Yes. Word and Excel files you own and adapt. No portal, no subscription to keep access.

Will this pass an audit on its own? The Kit gives you the documentation and the exact evidence to collect. You still run your ISMS and gather your real evidence. It removes the writing and tells you precisely what the auditor wants.

Is it current? Yes, ISO/IEC 27001:2022 with the 93 Annex A controls in the four current themes. Updates are included if the standard changes.

What if it is not for me? A 30-day money-back guarantee. If it does not save you the weeks it promises, you get a full refund.

Stop staring at the blank page.
A consultant is twenty thousand dollars and up. Your own time is two hundred hours. The Kit is instant, and it is guaranteed.
Add it to your cart and be audit-ready this weekend.

Instant digital download · 30-day money-back guarantee · The Art of Service Pty Ltd, GPO Box 2673, Brisbane QLD 4001 · support@theartofservice.com