ISO/IEC 27001 information security standard

ISO/IEC 27001 Requirements

Manage compliance and documentation, assess the maturity level of your organisation, and address identified deviations and improvement targets in accordance with the ISO/IEC 27001:2017 standard.

Information security as a strategic decision

At the heart of building and maintaining an information security management system are the organisation’s security requirements, processes, the size of the organisation and its structure. Granite’s ISO/IEC 27001 Requirements guides the operation onto the right track.

ISO/IEC 27001

The requirements of the ISO 27001 standard address the creation, implementation, maintenance and continuous improvement of the information security management system. The ISO/IEC 27001 standard includes a number of requirements that must be met by each organisation operating in accordance with the standard.

Requirements of the ISO/IEC 27001 standard

The requirements of the ISO/IEC 27001 standard include requirements for the operating environment, leadership, design, support functions, operations, performance evaluation and continuous improvement of the organisation. With Granite, you can:
  • Monitor the guided assessment model
  • Locate deviations and targets for improvement
  • Assign responsibility for the development measures to the right parties and monitor the development of the situation

Information security management system

The digital business landscape is constantly changing. Organisations also change according to the situation. Therefore, the information security management system must be incorporated into the organisation’s processes and general management and governance structures already at the planning stage.
  • Take control of information security on a single platform
  • Develop your strategy with information security consciousness
  • Compare data in records, learn from gap analyses and allocate development resources efficiently

Information security management compliant with the ISO/IEC 27001 standard

ISO/IEC 27001 is currently the most recognised international standard for information security management systems. It will help you to understand how to manage the significant impacts of information security, how to set the necessary controls and how to define clear objectives for information security.

Granite tools for information security and risk management

ISO/IEC 27001 Requirements

Manage compliance and documentation, assess the maturity level of your organisation, and address identified deviations and improvement targets. ISO/IEC 27001:2017.

ISO/IEC 27001:2022 Controls

Manage the controls available to your organisation and implement the plan in accordance with ISO/IEC 27001:2017, Annex A.

Information Security Risks

Identify and assess the information security risks associated with your operations. Develop operating models for developing security and report the results.

Easy to use. Good reporting features. Well-structured templates.