Tools & templates

Ship audit-ready evidence faster.

Battle-tested ISMS policy packs, risk registers, gap analyses, evidence trackers and runbooks — built for SMEs & Enterprise who don't have a 12-person compliance team.

Store launching soon — checkout temporarily disabled.

ISO 27001Word + Markdown

Full ISMS Policy Pack (ISO 27001 Aligned)

All 28 core ISMS policies an auditor expects — Information Security Policy, Access Control, Cryptography, Supplier, Incident Response, BCP, Acceptable Use and more. Branded-ready and plain English.

Coming soon

ISO 27001Excel

Risk Register & Treatment Tracker

ISO 27005-aligned risk register with pre-built threat library, scoring matrix, treatment plan, owner tracking and automatic heatmap. Pairs with the Gap Analysis Toolkit.

Coming soon

Multi-frameworkExcel + Guide

Gap Analysis Toolkit (Multi-Framework)

One workbook to score yourself against ISO 27001 Annex A, NIST CSF 2.0, Cyber Essentials and SOC 2 CC controls. Auto-generates a prioritised remediation roadmap.

Coming soon

ISO 27001Excel + Guide

ISO 27001 Gap Analysis Tool

Score yourself against all 93 Annex A controls in a single afternoon. Auto-calculates readiness and produces a prioritised remediation plan.

Coming soon

NIS2PDF + Excel

NIS2 Readiness Checklist

65-point checklist mapped to the 10 minimum NIS2 measures, with plain-English explanations and supplier questionnaire.

Coming soon

CMMCExcel

CMMC Evidence Tracker

Pre-populated with every NIST 800-171 control. Track evidence, owners, dates and gaps in one shared workbook ready for your C3PAO.

Coming soon

Cyber EssentialsDocs + Templates

Cyber Essentials Toolkit

Every policy you need to pass: acceptable use, password, patching, MFA, and a pre-scoping questionnaire. UK-focused, IASME-aligned.

Coming soon

GDPRExcel

GDPR Record of Processing (RoPA)

ICO-aligned RoPA template with example entries for marketing, HR, support and finance. Includes vendor register and DPIA checklist.

Coming soon

SOC 2Word + Markdown

SOC 2 Policy Pack

All 14 policies a Type 2 auditor expects — written in plain English, easy to brand, mapped to common controls.

Coming soon

CybersecurityWord + Runbooks

Incident Response Playbook

Plain-English IR plan with role cards, severity matrix, comms templates (customers, regulators, staff) and runbooks for ransomware, phishing and data leaks.

Coming soon

ISO 22301Word + Excel

Business Continuity & DR Plan

BIA workbook, RTO/RPO calculator, supplier dependency map and a ready-to-fill BCP/DR plan that satisfies ISO 22301 and NIS2 resilience expectations.

Coming soon

Third-Party RiskExcel + Questionnaire

Vendor / Third-Party Risk Pack

Tiered supplier questionnaire (SIG-lite style), scoring sheet, due-diligence checklist and contract clause library covering security, GDPR and NIS2.

Coming soon

GDPRWord + Posters

Data Classification & Handling Pack

4-tier classification scheme, handling rules per tier, labelling guide and printable awareness posters — fits ISO 27001 A.5.12 and GDPR principles.

Coming soon

CybersecuritySlides + Quiz

Security Awareness Training Pack

Editable induction deck, phishing simulation email templates, short quiz with answer key and a 12-month awareness calendar. No LMS required.

Coming soon

ISO 27001Excel + Templates

Internal Audit Toolkit

Annual audit programme, checklist per Annex A clause, finding log, CAPA tracker and management review pack — everything for your Stage 1 readiness.

Coming soon