Documentation Toolkit for Information Security Management System (ISMS) - ISO 27001

Coral eSecure provides complete documentation to meet Information Security Management System (ISMS) - ISO 27001:2013 requirements.

The standard has the following coverage that needs to be formally documented, and implemented:

Management System Controls (Clause 4 to 10) - Mandatory Controls

Annexure Controls (A.5 to A.18) - 114 detail controls - risk based controls

Coral documentation is a result of consulting assignments, which has been tested by clients who implement them and use them, and certification bodies - who tested them.

In each document there is an opportunity to know the baseline requirements that needs to be defined, as well as subject specific process/procedure/records which Coral considers best practices for implementation and continuous monitoring.


Salient Features

  • Documentaton support is in line with individual Management System Clauses (Clause to 4 to 10) and Annexure 114 Controls.
  • An online session to explain the standard requirements and how Coral documents fulfil these requirements
  • A project plan to support the implementation steps 
  • Suitable templates for all ISMS requirements including context register, scope, information security policy, risk assessment, performance dashboard, management review and internal audit records.
  • Suitable templates for Annex controls such as acceptable usage policy, patch management, backup policy, log management, password policies, manuals for IT operations, human resources, physical security, application development lifecycle, vendor management to name a few
  • Each template has filled content - which is highlighted to distinguish that the information needs to be modified before use
  • A guarantee that if you use these documents you will succeed both in certification and achieving ROI on ISMS investment
  • Documentation is independently verified for accuracy and coverage
  • World wide Online email and phone support

If you need detail coverage of any of the documentation listing including sample draft policy before purchase, please call or write to us.

If you have any additional questions or clarifications such as demo, please do not hesitate to call or write back to us.


Sample ISO 27001 Templates

Note: The above list and the samples are indicative, not exhaustive, please request for the full list.


Contact Us: