One of the pinnacle requirements to achieve ISO 27001 certification is to have an Information Security Policy. This module makes it easy to display your ISMS Policy. Posting the ISMS Policy online is typically more effective and influential on the employees than posting the policy across the building.

The ISO 27001:2005 standard contains on Annex A a set of "Control objectives and controls" that companies shall select as part of their ISMS process for treating their identified risks.  The selected controls, the implemented controls and the excluded controls form what is called the Statment of Applicability (SOA).  This module assists by displaying these controls in a matrix format, making it easy to follow the same numbers of the standard and also allowing for direct linkage to the area of implementation (for controls implemented within the intranet).

A requirement of any ISO standard and a key element of a good Information Security Management System  is to perform Internal Audits of the organization’s ISMS processes at periodic intervals. This module manages the entire internal audit process, using simple  tools to prepare and conduct audits as well as to initiate corrective actions and maintain associated records - for one location or multiple locations. The result is a much simplified, consistent and mistake-proof way to keep your company’s ISMS in check. Viewers can easily see on the intranet, a list of past or future audits and see all pertinent information related to them, such as audit plans, audit reports and findings.

A requirement of ISO 27001 and a great exercise for any business is to perform Management Reviews of the organization’s ISMS at periodic intervals to ensure the organization's ISMS continuing suitability and effectiveness. This module manages the entire ISO Management Review process, to prepare and conduct management reviews as well as to initiate action items or corrective actions and maintain associated records - for one location or multiple locations. The result is a much simplified and consistent way to keep your top management aware of the status of your company’s ISMS. Viewers can easily see a list of past or future management reviews and see all pertinent information related to it, such as management review agenda, presentation and action items.