This ISO27001: 2005 to 2013 Gap Analysis Tool has been created to help organizations who have implemented ISO27001: 2005 to assess themselves and current status of compliance against ISO27001: 2013.
This tool will enable such organizations to identify where they need to make changes, implement new procedures, or phase-out previous controls.
In traditional ITG fashion this gap analysis has been designed to help organizations prioritize their work areas in initial project planning and for final, pre-certification audit review of the ISMS.
It helps organizations to tackle the upgrade of their ISMS to ISO27001: 2013 with direction, identifying to project managers where to start first. The outcome of this tool and the analysis that it provides is the base for organizations to then conduct a detailed, granular approach to assessing their current information security control structure.
Looking for a ISO27002: 2013 ISMS Controls Gap Analysis Tool? Click here.
This tool is designed to work in any Microsoft environment; it does not need to be installed like software, and it does not depend on complex databases. It is reliant on human involvement.
For more information read our FAQ here