ISO 27001:2022

ISO 27001 Security Baseline: 9 Documents, All 93 Controls, $799.

Name: ISO 27001 MVP Security Baseline Pack
Brand: Airchitect
Price: 799 AUD
Availability: InStock

The complete ISO 27001:2022-aligned policy suite for Australian organisations. Privacy Act, NDB scheme, and APRA CPS 234 aligned. Download and implement.

ISO/IEC 27001:2022Privacy Act 1988 (APPs + NDB)APRA CPS 234ASD Essential Eight

Buy Now: $799 AUD →

What's Included

9 documents: ready to implement.

ISP-001

Information Security Policy

Master policy: 10 domains, risk appetite, roles, violations

ACP-001

Access Control Policy

Joiner/mover/leaver, MFA matrix, cloud IAM, quarterly access reviews

DCF-001

Data Classification Framework

4-tier system: Restricted/Confidential/Internal/Public, Privacy Act aligned

IRP-001

Incident Response Policy and Plan

P1-P4 severity, 6-phase response, NDB notification decision tree, OAIC contacts

RAR-001

Risk Assessment and Register

5×5 methodology, 8 pre-populated AI and cyber risks, treatment owners

SOA-001

Statement of Applicability

All 93 ISO 27001:2022 Annex A controls assessed with justification

SBS-001

Security Baseline Summary

Investor-ready 2-pager: security programme status, risk summary, certification roadmap

HTG-001

Self-Service How-To Guide

Step-by-step implementation, find-and-replace instructions, annual maintenance calendar

SOW-001

Statement of Work

MVP Ready ($799) and Investor Ready ($799) engagement scopes

Key Features

What makes this different.

All 93 controls assessed

The SOA-001 maps every ISO 27001:2022 Annex A control: not the superseded 2013 version.

Pre-populated risk register

8 realistic risks including phishing, ransomware, cloud IAM, vendor breach, and insider threat. Not a blank template.

Privacy Act aligned

IRP-001 includes the NDB notification decision tree, 30-day assessment obligation, and OAIC contact details.

Investor-ready summary

SBS-001 is a 2-page executive overview ready for due diligence packs: security programme status, risk summary, roadmap.

Includes a Statement of Work

SOW-001 templates the MVP Ready and Investor Ready advisory engagement scopes for consultants.

Implementation guide included

HTG-001 walks through the exact order to complete documents, find-and-replace instructions, and a maintenance calendar.

Who this is for Australian SaaS businesses, startups preparing for Series A due diligence, government contractors, digital agencies, and any organisation needing ISO 27001-aligned security governance.

Common Questions

FAQ

No. This pack builds the documentation foundation that certification requires: the policies, risk assessment, and control mapping. Formal certification requires a third-party audit by an accredited certification body. The pack is designed to be the starting point for a certification engagement.

ISO 27001:2022. The SOA-001 maps all 93 Annex A controls from the current version: not the 114 controls in the superseded 2013 edition.

For a small organisation (under 50 staff), allow 3–5 business days for initial implementation using the How-To Guide. The risk assessment and SOA take the most time.

The standard licence covers one organisation. Consultants should purchase a Consultant Licence: contact hello@airchitect.com.au.

Yes. The pack includes CPS 234 alignment notes. APRA-regulated entities using this pack should also review the CPS 230 Supply Chain Pack for operational risk documentation.

Ready to implement?

Download ISO 27001 MVP Security Baseline Pack today: $799 AUD, instant delivery.

Buy Now: $799 AUD → Browse all products