Toolkit content

First is important to note that all mandatory, and some non-mandatory, documents are included. Documents related to Annex A controls can be found in folder 08 Annex A Security Controls.

Please note that ISO 27001 does not require each control in Annex A to be implemented, only those deemed necessary as a result of risk assessments, legal requirements, or organizational decisions. To see the required documents by the standard, and the most common documents implemented to support an ISMS, please see this article: List of mandatory documents required by ISO 27001 (2013 revision) https://advisera.com/27001academy/knowledgebase/list-of-mandatory-documents-required-by-iso-27001-2013-revision/  

The same concept applies to ISO 22301. For the ISO 22301 documents, please see: ISO 22301:2019 List of mandatory documents https://advisera.com/27001academy/knowledgebase/mandatory-documents-required-by-iso-22301/

Our toolkits focus on small and mid-size companies, and that's the reason we do not write documents to cover each control of ISO 27001 Annex A – for those companies this large number of documents would result in overkill for many of them. Instead of that, a single template may cover multiple controls. 

In the root folder of the toolkit, you'll find a document called “List of Documents” that explains which clauses and controls are covered by which document. 

Regarding clauses or annexes, please note that the text of ISO 27001 itself is not included in the price - this needs to be purchased separately, however is not essential for the implementation (toolkit templates and related comments are all you need for the implementation).