A total solution for ISO 27001

GAP Analyses

Asset Management

Document Management

Risk Management

Audit Management

Conformance Management

Continual Improvements

Management Reviews

ISO 27001 compliance doesn’t have to be complicated or only achieved by the larger enterprise.

The 27k1 ISMS is the perfect ISO 27001 solution for businesses of all sizes.

Request a free demoRequest a no obligation system demonstration and see for yourself

The 27k1 ISMS is the perfect ISO 27001 solution for all businesses

The 27k1 ISMS has been designed in accordance with the ISO 27001 standard and the ISO 27005 recommendations. It provides compliance through design. This means that auditors and implementers can move freely across the system modules, validating and updating data, checking project progress and confirming compliance to the defined scope.

The 27k1 ISMS application:

  • Is designed to be practical and intuitive to use. The software creates the ISMS, prepares the business for ISO 27001 certification and manages continuous improvements.
  • Provides total management of all Information Security asset data.
  • Lets system users run comprehensive and flexible risk management scenarios.
  • Tracks corrective actions and nonconformances from start to finish and attaches evidence to prove compliance.
  • Provides remote access to ISMS Consultants and Auditors.
  • Attractively priced for both ISO 27001 Consultants and all Companies.
  • Let's discuss your ISO 27001 project...
ISO 27001 ISMS Gap Analysis

GAP Analyses

Carry out a GAP Analysis using preconfigured ISO 27001 controls and clauses which suggest the recommended documentation.

Update GAP actions or tasks using the detailed project reports to track their progress.

27k1 ISMS Framework

ISMS Framework

This module sets the information Security policies, risk parameters and weights the impact and outcome of a risk assessment. The process is logical, intuitive and can be configured at every stage.
ISO 27001 asset management

Asset Management

All Information Security assets are managed in the Asset Manager, including personnel, hardware, software, outsourced services, etc.

Companies using spreadsheets or do not have an Asset or HR Register can choose to adopt the system’s asset management functionality, since it manages all asset details including the asset's lifecycle.

ISMS Documentation management system DMS


The 27k1 ISMS accesses the businesses documents through URL’s or hyperlinks. This means that users can continue to use, create, access and track documents in the company’s Document Management System (DMS), rather than using third party networks to store these valuable assets.
ISO27001 controlsand soa

ISO Controls & SoA

All Annex A Controls are listed, each being subject to user selection in readiness for automatically producing a Statement of Applicability. Assign documents to each Control and manage the actions that have been assigned, demonstrating compliance and on-going improvements.

SoA’s are offered in draft format then formally issued when all the Controls and supporting documents are in place.

Cyber Security Risk Management

Risk Management

System users can run comprehensive and flexible risk management scenarios, based on asset valuation and existing controls. This leads to inherent and residual risk assessment and treatment.
Nonconformities and corretive actions


The Conformance manager allows security breaches to be identified, allowing nonconformances and corrective actions to be raised, tracked and resolved. Conformance Reports highlight severity, root cause and preventive measures to be applied and actions taken.
management review meetings

Review Meetings

Using Microsoft 365 functionality, the system allows meetings to be diarised, invitations sent, agendas set and meeting notes recorded. Review meetings allow nonconformances and actions to be raised, tracked and resolved, enabling the continuous improvement of the ISMS.
27001 dashboard report

Internal Audits

The Internal Audit Manager module pulls in data that has been submitted to the 27k1 ISMS. It enables comprehensive internal audits on Clauses, Controls, Processes, Locations, Departments and Suppliers.

The system allows questions to be raised, audits to be planned in detail with auditees to be assigned and scheduled. The audits facilitate the raising of nonconformances, implementation of corrective actions and on-going improvements to the company’s information security position.

27001 dashboard report


The 27k1 ISMS provides a comprehensive range of reports in dashboard format accessible by all permitted company personnel The reports are rich in detail and accurately show the information security status of the business, demonstrating how each information security asset is performing against specific security measures and objectives.

The 27k1 ISMS Platform

ISO 27001 ISMS architecture

Retain Control of the ISMS

Your company retains control over and access to its’ ISMS data at all times.

All ISO 27001 ISMS data is stored on Azure SQL Database,  Amazon Microsoft SQL Server Database or a Microsoft SQL Server database located within your company network.

All documents, images, supporting evidence and certificates are stored, accessed and amended on your own document management system or Intranet using hyperlinks.

Compliance by Design

27k1 ISMS provides total integrity of your Information Security data. There can be no discrepancies caused by invalidated data, since this is checked and approved before entry to the system. Historically, this has been a common problem when using spreadsheets, which often leads to audit nonconformances.

27k1 ISMS has been designed and developed in accordance with the ISO 27001 and ISO 27005 standards by Information Security professionals and ISO 27001 practitioners.

27k1 ISMS allows a company to identify Information Security assets and Key Business Scenarios, assess their values and quantify any risks, threats and vulnerabilities to which these they may be exposed.

Rapid Progress to ISO 27001 Certification

By fully embracing the latest ISO 27001 standard, the 27k1 ISMS provides all 114 controls that enable auditors to review, test, confirm and certify your ISMS systems' compliance to ISO 27001.

The 27k1 ISMS delivers automatically generated reports that enable asset auditing, risk management and rapid progress towards ISO 27001 compliance.

This simplifies and accelerates the journey to ISO 27001 certification and at the same time reduces the resources needed for the on-going management of the ISMS.

Information Security leads to Business Opportunity

Increasingly, small to medium sized businesses are gaining ISO 27001 certification in order to compete for tenders or join supply chains that demand proof of their Information Security credentials.

The 27k1 ISMS responds to this need through delivering an intuitive, low cost, feature rich software solution, believed to be the best of its' type available on the UK and global market.

27k1 ISMS is recommended for ISO 27001 Implementers, Internal Auditors and Information Security Consultants

Implementers & Auditors

This software is a key system for your company's implementers and internal auditors. It allows you to move away from unwieldy and complex spreadsheets to a clear and easy to use system.

Used on an ongoing basis, the 27k1 ISMS can be readily referenced in the board room and prepares you for future audits at any time.

ISO27001 Consultants

Please contact us to discover the opportunities available to limited companies by partnering with us.

ISO 27001 Consultants Auditors Implementers

Book an online demo now!

  • Request a free demo if your company needs ISO 27001 certification to enter supply chains, compete in bids and tenders or wishes to demonstrate its information security posture.
  • Request a free demo if your company has ISO 27001 and you want to say goodbye to spreadsheets.
  • Request a free demo and become a reseller if you’re an ISO 27001 Practitioner.
  • Request a free demo if you’re based beyond the UK, so that we can develop an international partnership.

Please contact us to arrange a suitable date for your demonstration.