ISO 27001 Statement of Applicability Generator

Document which ISO 27001 controls apply to your organization

About This Tool

The Statement of Applicability (SoA) is a mandatory ISO 27001 document that lists all controls from Annex A, identifies which are applicable, provides justification, and describes implementation status.

Organization Information

Organization Name *

Prepared By *

Approved By

Version

Date

Assessment Progress

Total Controls

Applicable

Not Applicable

Pending

Filters

Filter by Category

Filter by Applicability

ISO 27001:2022 Annex A Controls

Showing 93 of 93 controls

Showing only a short preview. Pro gives you the full result and file export.

5.1

Policies for information security

Organizational

Is this control applicable?

Justification

5.2

Information security roles and responsibilities

Organizational

Is this control applicable?

Justification

Unlock Full Results & All 11 Tools

Export complete reports, remove limits, and access every ISO 27001 tool plus Risk Copilot. Includes ISO 27001 AI Assistant Plus (150 messages/day) at no extra cost.