Benefits of Provensec ISO 27001 ToolkitISO/IEC 27001:2013 Information technology – Security techniques – Information security management systems – RequirementsPublished by International Organization for Standardization (ISO), it lays down various requirements for an organization while it is implementing its information security management system (ISMS). An organization first needs to implement the ISO 27001 standard and it is then audited by an external auditor to receive the certification. In order to ease the standard implementation process, we have developed a toolkit containing the policies and procedures required by ISO 27001 standard. In this post, we will look at the key benefits of Provensec’s ISO 27001 Toolkit. 1. 50+ Policies, Procedures, and Templates Available In our ISO 27001 toolkit, more than 50 policies, procedures, and templates are available as per the requirements of ISO 27001:2013 standard. Our team has ensured that these documents cover all the clauses of the standard and are precise so that it is easier to understand and implement within your organization. All these documents are precisely mapped to the standard clauses and controls.
Figure 1: Snapshot showing some of the documents on our tool2. More than 90% of the details are auto-filled. When you purchase the toolkit, you are asked certain details such as your organization name, address, phone number, zip code, email address, etc. and these details are pre-filled when you download a document from our portal so that your team has to spend a minimum amount of time in editing documents. In addition, you can also add your logo so that it gets included on all the documents.
Figure 2: Organization Settings
Figure 3: Pre-fille Details in a downloaded document3. Comprehensive Filters for Searching a Document On the toolkit portal, you can search for a document using various factors such as –
- I. Title,
- II. Control number,
- III. Group,
- IV. Domain,
- V. Whether the document is mandatory or not,
- VI. Document categories such as Policies, Procedures, Templates, etc.
Figure 4: Search Filters4. Download unfilled documents. Apart from allowing a premium user to download a prefilled document by filling in essential details, you can also download an unfilled document for editing and finalizing it. If you click on the “Select” button next to a document, you will see four options as shown in the image given below.
Figure 5: Document Actions5. Red Flag means a Mandatory Document and Orange flag means an optional document. The toolkit shows a flag along with each document on the right-hand side of the screen. If the flag’s color is shown as Orange, it means that this is an optional document while the documents with red flags are mandatory as per the requirements of ISO 27001.
Figure 6: Flags6. Multiple Users On the toolkit portal, you can add multiple users from your organization under the Manage Users option. The maximum number of users that can be added to an organization’s account depends upon the package purchased. Do check your package details to get an idea as to the maximum number of users you can add here. Also, in case if an employee leaves your organization, you can remove his account from the toolkit.
Figure 7: Adding Multiple Users7. Ticketing System Another feature which is only available for premium users is the ticketing system. In case you face any issues while using the toolkit, you can simply raise a ticket and our support team will assist you in resolving the issue. All the messages received from the support team are shown here. In addition, a user is also notified via an email.
Figure 8: Ticketing System8. Simplified Menu While you are creating policies, procedures, and templates for your organization’s ISMS, it is important that things are kept as simple as possible, and complexity is minimized. Our toolkit has a simplified menu with all the important things that you will require while working on the ISMS documentation.
Figure 9: Simplified Menu9. Standard Document Outline and Document Version Control Documents available on the toolkit have the same format and structure. Moreover, as per the standard requirements, document version control table is available in each document so that you can keep track of changes made in the document.
Figure 10: Document Version Control
Figure 11: Front Assessment Report Front Page