CISO as central owner. Asset Owners for risk assessments and control submissions. Auditors for certification validation. All 93 ISO 27001:2022 controls. Full SoA management.
The CISO is the central owner of the ISO 27001 ISMS. This panel provides complete strategic governance โ reviewing and approving all Asset Owner submissions, maintaining the Statement of Applicability, overseeing the risk register, and managing the certification programme.
Real-time view of all 93 controls across 4 domains, Asset Owner submission statuses, overall ISMS health and certification readiness scoring.
Asset Owners submit risk assessments and control implementations. CISO reviews, approves, rejects or requests revisions โ every action fully logged.
Maintain and export the SoA documenting all 93 controls โ which are applicable, which are implemented, and the justifications for inclusions and exclusions.
ISO 27001 requires periodic management reviews. Generate structured management review reports and certification-ready evidence packs with one click.
CISO Dashboard
Coming Soon
Screenshots appear here once platform is live
Asset Owners are accountable for the information assets, systems and processes under their control. This panel provides structured workflows to perform risk assessments per asset, implement ISO 27001 controls, upload evidence, and submit to the CISO for review and approval.
Structured risk assessment for each information asset. Identify threats, vulnerabilities, likelihood and impact. Generate risk treatment plans with control selections.
Implement controls from all 4 domains applicable to your assets. Upload policies, configurations, test results and records as structured evidence per control.
Once controls are implemented and evidence is collected, submit to the CISO with an implementation summary. Track approval status and respond to CISO feedback.
Log and track corrective actions raised by the CISO or Auditor. Manage remediation tasks, owners and due dates until closure and re-approval.
Asset Owner Dashboard
Coming Soon
For internal auditors and external ISO 27001 certification body (CB) auditors. Full read and review access to all controls, risk assessments, SoA and ISMS documentation. Raise findings, validate control implementations, and generate Stage 1 and Stage 2 audit-aligned reports.
Every control submission, CISO approval, evidence upload and risk assessment is logged with full timestamps and user identities โ immutable and certification-ready.
Raise major nonconformities, minor nonconformities and observations against specific controls. Track corrective actions through to verified closure.
The platform supports both documentary review (Stage 1) and implementation review (Stage 2) audit workflows, aligned to ISO 17021-1 certification audit requirements.
Track corrective actions from previous audits, changes to the ISMS scope, and evidence of continual improvement for annual surveillance audits.
Auditor Panel
Coming Soon
Built by ISMS experts. Every feature purpose-designed for ISO 27001 certification.
All ISO 27001:2022 Annex A controls across 4 domains pre-loaded. Select applicable controls, document justifications and start implementing on day one.
Automated Statement of Applicability generation. Document which controls are applicable, which are implemented, and justify inclusions and exclusions per ISO 27001 clause 6.1.3.
Structured Asset Owner โ CISO review โ approval workflow. Every step documented with full audit trail meeting ISO 27001 clause 7.5 documentation requirements.
Built-in ISO 27005-aligned risk assessment methodology. Asset identification, threat and vulnerability analysis, risk scoring and treatment plan management.
Live certification readiness scoring across all 4 domains and 93 controls. Identify gaps, overdue tasks and submission statuses at a glance.
One-click export of structured evidence packs for Stage 1 and Stage 2 audit use. Management review reports, SoA, risk register, and control evidence โ all pre-organised.
CISO defines the ISMS scope, assigns Asset Owners to information assets, and selects applicable ISO 27001:2022 controls for the SoA.
Asset Owners perform risk assessments per asset, implement controls, upload evidence and submit to CISO for review.
CISO reviews all submissions, approves controls, manages the risk register and ensures the overall ISMS meets ISO 27001 requirements.
Auditors (internal or CB auditors) review the full audit trail, raise findings, and generate certification-aligned Stage 1 and Stage 2 audit reports.
Start your 30-day free trial. All 3 panels. All 93 controls. No complexity.