The statement of applicability is the list of ANNEX A controls and control objectives that you are implementing in your organisation. It is based on ANNEX A/ ISO 27002 and can include additional controls such as those imposed by customers.
Statement of Applicability Template Contents
ISO 27002 Clause, Title, Control Objective, Driver – why control is required – Business | Risk | Legal | Contract, Is this Applicable?, Date Last Assessed, Why is this not applicable?
Tip: It also includes the controls you are not implementing along with a justification why not.
If you want ISO 27001 templates without wondering what good looks like, or if they will stand up to audit and certification, then you want to download these templates.
Used by industry professionals as part of their ISO 27001 certification passes
Designed to be used almost as is for the novice or configured and adapted by those with experience
These are not just boiler plate, these are working documents, established, proven and praised by UKAS Certification auditors as amongst the best they have seen. We can take care of it for you of course, but if you are going it alone, you won’t go wrong with the tools we use as part of our trade.