Re: ISO 9001, ISO 14001, ISO 27001 and ISO 27002, and also 18001 Standards Gap Analys
ISO 27001 compliance checklist..
This document has three sheets out of which two shows you the status of implementation based on each control objective and each domain.
All you need to do is to ask yourselves / team the question that is posted against each control and put in your answers in the column called “Findings”. Once this is done, you will be able to determine the level of implementation. Put in the percentage of completion in the “Status (%)” column against each control.
The value in the “Status (%)” will be in the range of 0 -100 and you can mention NA or any other value to denote that a particular control is not applicable. Kindly note that if there is any control that is not applicable to your organization, then your cumulative results on the other two sheets will show either not completed or partial. To avoid such situation, mention Not Applicable in your findings and put in the value 100 in the status field. This will ensure that your report is accurate.
By going to the other two sheets you will be able to understand the level of implementation. The graphical representation sheet will give you the graphical view of our status, which can be incorporated into your management presentation.
Hope this helps..
cheers..