Get a second pair of ISO 27001 eyes before the auditor arrives.

    Optional human support for teams who are unsure whether they are ready for a certification audit. We review what you have, point out gaps, and help you focus on what matters before Stage 1 or Stage 2.

    Consultations are optional support. They do not guarantee a certification pass — only an accredited certification body can certify your ISMS.

    Three ways we can help

    Choose the review that matches where you are in the ISO 27001 journey.

    ISO 27001 readiness review

    Who it's for

    Teams who have started building an ISMS but are unsure whether they are ready to engage a certification body.

    What is reviewed

    • ISMS scope and context
    • Risk methodology and risk register
    • Statement of Applicability
    • Core policies and ownership

    What you receive

    • Structured readiness feedback
    • Prioritised list of gaps and quick wins
    • Suggested next 30–60 day actions

    Suggested duration: ~60 minutes (placeholder)

    Request a readiness review

    Stage 1 document review

    Who it's for

    Teams preparing for the Stage 1 (documentation) audit who want a second pair of eyes on their ISMS documents.

    What is reviewed

    • Mandatory ISO 27001:2022 clauses (4–10)
    • ISMS policy, scope and objectives
    • Risk assessment and treatment documentation
    • Statement of Applicability and justifications

    What you receive

    • Document-by-document feedback
    • Notes on common Stage 1 findings to avoid
    • Suggested edits and missing items

    Suggested duration: ~90 minutes (placeholder)

    Request a Stage 1 review

    Stage 2 evidence review

    Who it's for

    Teams approaching the Stage 2 (implementation) audit who want to sanity-check evidence before the auditor arrives.

    What is reviewed

    • Evidence tracker and control coverage
    • Internal audit programme and results
    • Management review inputs and outputs
    • Corrective actions and nonconformities

    What you receive

    • Evidence gap list per Annex A theme
    • Suggested clarifications and reworded records
    • Realistic view of likely audit questions

    Suggested duration: ~90 minutes (placeholder)

    Request a Stage 2 review

    Examples of items we look at

    Depending on the option you choose, a review can touch any of the following parts of your ISMS.

    ISMS scope
    Risk methodology
    Risk register
    Statement of Applicability
    Core policies
    Evidence tracker
    Internal audit
    Management review
    Corrective actions

    Who runs the consultation

    Reviews are delivered by practitioners who have implemented and audited ISO 27001 ISMSs. Detailed bios and credentials will be published here once verified.

    Lead reviewer — placeholder

    Background, certifications (e.g. lead implementer / lead auditor) and years of ISMS experience will be listed here.

    Supporting reviewer — placeholder

    Additional reviewer details, focus areas (risk, controls, evidence) and sample engagements will be added once confirmed.

    What a consultation is, and is not

    • Optional support to sanity-check your ISMS before engaging a certification body.
    • Practical feedback on documents, evidence, and audit-readiness.
    • Not a certification audit, and not a guarantee of passing Stage 1 or Stage 2.
    • Not a substitute for your internal audit or management review.

    Ready for a second pair of eyes?

    Tell us where you are in the process and which review fits best. We'll reply with availability and next steps.

    Request a consultation

    Or email contact@iso27001kit.com