Skip to main content
Image coming soon

ISO/IEC 27002:2022 Information Security Controls Evidence & Implementation Kit

$249.00
Adding to cart… The item has been added
ISO/IEC 27002:2022 · Information Security Controls · Evidence & Implementation Kit
Implement all 93 ISO 27002:2022 controls, without writing each one from the standard yourself.
Every one of the 93 controls, across the organizational, people, physical and technological themes, handed to you as an adopt-ready control with the exact evidence an ISO 27001 auditor examines, and the 11 new-2022 controls flagged.
Annex A-ready in a weekend, not a quarter.

Here is the honest situation. ISO 27002:2022 is the control set behind ISO 27001 Annex A: 93 controls reorganized into four themes, with 11 controls new in 2022 like threat intelligence, cloud security, data leakage prevention and secure coding. For certification you must implement the applicable controls, document them in your Statement of Applicability, and evidence them. Writing 93 controls from the standard, mapping each to your environment and gathering the evidence is weeks of work, and a control that is claimed but not evidenced is exactly the finding an ISO 27001 auditor raises.

This Kit removes that build. It is all 93 ISO 27002:2022 controls written as adopt-ready controls you personalize in a weekend, with the evidence an auditor examines.

What you get, the moment you buy

93
All 93 controls, adopt-ready. Every ISO 27002:2022 control across the four themes, organizational, people, physical and technological, written so you personalize and apply it. The 11 controls new in 2022 are flagged.
93
Evidence-they-examine checklists. For each control, exactly what an ISO 27001 auditor examines, plus the finding they most often raise, so you close it before certification.
1
Annex A Control Matrix, pre-built. All 93 controls in a working spreadsheet, ready to drive your Statement of Applicability with status and evidence location.
1
Gap & Readiness Assessment. Score each control and the workbook returns your readiness as a single percentage, and exactly what to fix next.

Grounded in ISO/IEC 27002:2022, all 93 controls across the four themes, with the 11 controls new in 2022 (threat intelligence, cloud security, data leakage prevention, secure coding and more) flagged. Editable Word and Excel files.

This is your Statement of Applicability, done
ISO 27001 certification runs on the Statement of Applicability: which of the 93 controls apply, and the evidence for each. This Kit gives you all 93 as adopt-ready controls with the evidence, so your Statement of Applicability is built and defensible, not a blank template.

What one control looks like

This is threat intelligence, control 5.7, one of the 11 controls new in 2022. All 93 are built to this depth.

5.7 Threat intelligence ORGANIZATIONAL
Implement this control

[Organization] shall collect, consolidate and analyze information relating to information security threats at strategic, tactical and operational levels, and shall produce actionable threat intelligence that is disseminated to relevant stakeholders and integrated into risk assessment, technical controls and incident response so that defensive measures are proportionate to the current threat landscape.

Implementation note.

New control in the 2022 revision that formalizes structured strategic, tactical and operational threat intelligence. This is one of the 11 controls newly introduced in the 2022 revision of ISO/IEC 27002, so expect no direct predecessor in a legacy 2013-era control set and treat it as a fresh implementation and audit focus area.

Evidence your auditor examines
  • Documented threat intelligence sources and collection process
  • Threat intelligence reports or briefings distributed internally
  • Records showing intelligence feeding into control changes or detection rules
  • Integration of threat feeds into monitoring or firewall tooling
Common finding they raise: Threat data is gathered ad hoc and not translated into defensive action.

Why this is not another template pack

  • The evidence is the point. A control you cannot evidence fails certification. This tells you exactly what an auditor examines and the finding they raise, for all 93 controls.
  • The 2022 structure and new controls. The four-theme structure and the 11 new controls, threat intelligence, cloud, data leakage prevention, secure coding and more, are built in, not an old 2013 reading.
  • Built on a mapped compliance corpus, not one person's opinion, from a graph of thousands of controls across standards.
  • It compounds. ISO 27002 is Annex A of ISO 27001, and pairs with ISO 27005 risk and 27001 clauses, so this is the core of your whole ISMS.

Who buys this

Organizations pursuing or maintaining ISO 27001, the security managers who own Annex A and the Statement of Applicability, and consultants accelerating a certification. Whether it is a first certification or the move to the 2022 controls, you save weeks and walk in with all 93 controls and evidence structured.

By the end of the weekend you will have
✓  An adopt-ready control for all 93 items
✓  A completed Annex A control matrix
✓  The evidence your auditor examines
✓  Your Statement of Applicability driven from the matrix
✓  A readiness percentage and a fix list
✓  The common findings closed before certification

Common questions

Is it really editable? Yes. Word and Excel files you own and adapt. No portal, no subscription.

Does it cover all 93 controls? Yes, every ISO 27002:2022 control across the organizational, people, physical and technological themes, with the 11 new controls flagged.

How does it relate to ISO 27001? ISO 27002 is the control set behind ISO 27001 Annex A. This Kit builds those controls and drives your Statement of Applicability.

Does it help with the 2013-to-2022 transition? Yes. The controls follow the 2022 four-theme structure, so it moves you onto the current controls.

What if it is not for me? A 30-day money-back guarantee.

Do not write 93 controls from the standard by hand.
Every ISO 27002:2022 control is fast to adopt with the Kit. It is instant, and it is guaranteed.
Add it to your cart and build your Annex A this weekend.

Instant digital download · 30-day money-back guarantee · The Art of Service Pty Ltd, GPO Box 2673, Brisbane QLD 4001 · support@theartofservice.com