ISO 27001:2022

ISO 27001 Security Baseline: 9 Documents, All 93 Controls, $799.

Name: ISO 27001 MVP Security Baseline Pack
Brand: Airchitect
Price: 799 AUD
Availability: InStock

MVP information security documentation for ISO 27001:2022 certification. Policy suite, risk register, Statement of Applicability covering all 93 Annex A controls, and management review pack: everything needed for Stage 1 audit readiness.

ISO/IEC 27001:2022ISO/IEC 27002:2022Privacy Act 1988

Buy Now: $799 AUD →

What's Included

9 documents: ready to implement.

AIR-27001-001

Information Security Policy Suite

Master ISMS policy, acceptable use, access control, and incident management policy: all four in one document

AIR-27001-002

Information Asset Register

Asset inventory with classification, ownership, and Annex A control mapping

AIR-27001-003

Information Security Risk Register

Annex A-aligned risk register with likelihood, impact, treatment, and residual risk rating

AIR-27001-004

Statement of Applicability (SoA)

All 93 ISO 27001:2022 Annex A controls: applicability, justification for inclusion/exclusion, and implementation status

AIR-27001-005

Risk Treatment Plan

Detailed treatment actions for accepted risks linked to Annex A controls and implementation timelines

AIR-27001-006

Supplier Security Assessment

Third-party security questionnaire and assessment aligned to Annex A.5.19–5.22 supplier controls

AIR-27001-007

Internal Audit Procedure and Report

ISO 27001 Clause 9.2: audit scope, criteria, schedule, and report template

AIR-27001-008

Management Review Minutes Template

Clause 9.3: required management review inputs, decisions, and action items

AIR-27001-009

Corrective Action Register

Nonconformity log with root cause analysis, corrective actions, and effectiveness verification

Key Features

What makes this different.

All 93 Annex A controls covered

The Statement of Applicability addresses every ISO 27001:2022 control: inclusion rationale, exclusion justification, and implementation status: exactly what auditors require.

Stage 1 audit-ready

The policy suite, risk register, and SoA provide the documentation foundation for Stage 1 documentary review, typically completed in one to two months.

Australian Privacy Act alignment

The asset register and supplier assessment include Australian Privacy Act (APP) data handling considerations: important for Australian ISMS scopes involving personal information.

MVP scope: essential, not bloated

Focused on the minimum viable documentation set for a real ISMS. No unnecessary documents that create ongoing compliance burden without adding value.

Who this is for
Australian SMEs and mid-market organisations pursuing ISO 27001:2022 certification. Technology companies and SaaS providers responding to customer security questionnaires. IT and security teams establishing a formal ISMS for the first time.

Common Questions

FAQ

ISO 27001:2022: the current standard with 93 Annex A controls (revised from 114 in the 2013 version). The Statement of Applicability maps to the 2022 control set.

The nine documents provide a solid Stage 1 foundation. Stage 1 focuses on documentary review: auditors assess whether your ISMS documentation covers the required clauses. Additional operational evidence is typically needed for Stage 2.

The risk register provides the risk assessment structure. A full quantitative risk methodology is not included: this is an MVP baseline designed for pragmatic first-time ISMS implementers.

Yes. This MVP Baseline covers the essential documentation for certification. The Full ISMS Pack (available Week 2) includes additional operational procedures, security awareness programme, and supplier management documentation.

Ready to implement?

Download ISO 27001 MVP Security Baseline Pack today: $799 AUD, instant delivery.

Buy Now: $799 AUD → Browse all products