Skip to Main Content
Learn for less: Save 10% on high-quality foundation and auditor training. Find out more
ISO 27001 Gap Analysis

ISO 27001 Gap Analysis

SKU: 3756
Format: Consultancy
Availability: Always Available

A specialist, in-person review of your current information security posture against the requirements of ISO/IEC 27001:2013 or ISO/IEC 27001:2022.

Get the true picture of your ISO 27001 compliance gaps, and receive expert advice on how to scope your project and establish your project resource requirements.

Please note, the price quoted is for organisations with up to 250 employees and one major site based in mainland UK. If you have specific requirements, please contact us for a personalised quote.

Buy now, pay later! Enjoy the benefits of paying by purchase order with an IT Governance corporate account. Apply online today or call our service centre team on +44 (0)333 800 7000.

 COVID-19: remote delivery options

We would like to reassure our clients that all training and consultancy services will go ahead as scheduled during the current COVID-19 situation. As a company that fully embraces flexible and remote working, we are adjusting our delivery methods to allow us to provide consultancy services, penetration tests and training remotely where necessary. Please also refer to our COVID-19 policy.

For more information about this service or to get a tailored quote for your organisation, please enquire below and one of our experts will be in touch shortly.Enquire about this service

Our ISO 27001 Gap Analysis will provide you with an informed assessment of:

  • Your compliance gaps against ISO 27001;
  • The proposed scope of your ISMS (information security management system);
  • Your internal resource requirements; and
  • The potential timeline to achieve certification readiness.

What to expect:

An ISO 27001 specialist will interview key managers and perform an analysis of your existing information security arrangements and documentation.

Following this, you will receive a gap analysis report of the findings. It will detail areas of compliance and those requiring improvement, and provide further recommendations for the proposed ISO 27001 compliance project.

 Download case study

The report includes:

  • An overview of the state and maturity of your information security arrangements;
  • A summary of the specific gaps between these arrangements and the requirements of ISO 27001;
  • Options for the scope of an ISMS, and how they help to meet your business and strategic objectives;
  • An outline action plan and indications of the level of internal management effort required to implement an ISO 27001 ISMS; and
  • A compliance status report (red/amber/green) against the management system clauses (clause-by-clause), as well as the information security controls (control-by-control) described in ISO 27001:2013 or ISO 27001:2022.

Download excerpt

Why get a customised, in-person gap analysis?

Questionnaire-based gap analyses don’t provide the level of expert analysis and insights you get from a specialist. With an in-person gap analysis, you will have a clear idea of the proposed scope of the ISMS, be able to set realistic project expectations, and obtain customised and detailed information necessary to develop a strong business case for implementing an ISO 27001-compliant ISMS.


  • The price quoted is applicable for organisations with up to 250 employees and 1 major site (location).
  • If your business is located outside mainland UK (England, Scotland and Wales), additional expenses will be charged to accommodate our consultant’s travel for the on-site assessment.
  • The time required to complete the gap analysis often depends on the size and complexity of the organisation, but the final report will normally be delivered within ten working days of the initial site visit(s)/online assessment. If the exercise is likely to take longer than this because of organisational complexity, we will tell you at the outset.

Speak to an ISO 27001 expert today

Get in touch with one of our qualified ISO 27001 specialists for free practical advice on the ISO 27001 gap analysis process.

If you are not eligible for the quoted service, please contact us to discuss your requirements and we will provide a quote based on your specific needs.

Enquire about this service

Customer Reviews

This website uses cookies. View our cookie policy
SAVE 10%