ISO 27001 Certification Steps

We Guide the End-to-End Steps to Your Certification.


An optional assessment for those pursuing ISO 27001 certification for the first-time. We assess your readiness to undergo the following Stage 1 and Stage 2 audits.

Stage 1 Audit

Reviews your company practices and documentation to confirm it is in compliance with the requirements of ISO 27001. We usually review on-site with management walkthroughs over 1-2 days.

Stage 2 Audit

Tests the degree of conformance of your Information Security Management System (ISMS) with ISO 27001 by reviewing your policies, procedures, internal audits, management reviews, and any other ISMS documentation.

Surveillance Audit

To ensure ongoing conformity of your ISMS with ISO 27001, surveillance audits are performed for the following two years while the certification remains valid. We follow a risk-based approach to confirming ongoing conformance to the ISO 27001 requirements.

You're in great company. We work with 120+ fast-growing software companies. From 2 to 14,000 employees.

Inlogik logo

What our customers say:

' We are super stoked that we chose to work with AssuranceLab who have made the audit such a pleasant experience. '

Guido Santo, VP Cybersecurity

' The key was in the simplification of the audit requirement. AssuranceLab speaks a language the customer can understand. This is critical. '

Paul Lubik, Consultant

' We have had the most seamless and great relationship. AssuranceLab has taken care of us every step of the way, helping us get through the dreaded audits in a way that actually isn’t stressful or overwhelming.

I actually really enjoy the audits as this way takes the pressure and stress out of it completely and knowing we have support whenever we need it is also helpful. '

Catherine Fromont, People and Operations

' AssuranceLab always responded to our questions quickly and their explanations were clear and efficient. That helped us better understand our controls and make improvements to make them more efficient and manage compliance better. '

Huy Dang Nguyen, Senior Security Specialist

' AssuranceLab was supportive and responsive throughout the entire process... (their) agile approach fit well. They were always just a phone call away and would match the speed we were going for any given week. '

Tristan Cole, CTO

' This flexible process allowed us time to make changes while catering to the business needs. It contributes to making the audit faster, simpler and for us to understand the processes better. '

Adrian Loke, Director of Infrastructure

' AssuranceLab listened to understand our unique issues and helped guide us through the audit process in a way that made sense for us.'

Brad Shaw, CEO

' The collaborative approach provided many opportunities for small course corrections before investing too much time. This prevented wasted effort and improved the quality and business fit. '

Bryon Westmoreland, CEO

' We found the whole process to become SOC 2 Type I and then SOC 2 Type II was a complex problem made easy by AssuranceLab. Whenever we had a query about anything the responses were prompt and thoughtful. '

Robert Sumison, Head of Security
Audit Report