🏆 ISO/IEC 27001:2022 ISMS Assessment ✧ 情報セキュリティマネジメント 🔐
🏆
🔐
📋
✧ International Standard Assessment ✧

ISO 27001アイエスオー Compliance Checker

情報セキュリティマネジメントシステム チェッカー ♪

🆕 Updated for ISO 27001:2022 • 93 Controls
🏢 Organizational (37)
👥 People (8)
🏗️ Physical (14)
💻 Technological (34)

Assess your ISO 27001 ISMS readiness with our kawaii checker! ✧ Evaluate controls across all 4 themes and prepare for certification. がんばって!

ISO Guardian
Let's check your
ISMS controls! ✧
認証準備しよう!

✧ ISO 27001 Assessment ✧

ISMS コンプライアンスチェック開始!

🔐 About ISO 27001:2022

ISO/IEC 27001 is the international standard for Information Security Management Systems (ISMS). The 2022 version reorganizes controls into 4 themes with 93 total controls in Annex A.

37
Organizational
8
People
14
Physical
34
Technological
0 of 24 questions answered ✧ 0/24 回答済み
🏢

Organizational Controls

組織的管理策 • Policies, roles, and governance

Annex A.5 • 37 Controls
1

Do you have documented information security policies approved by management?

経営層により承認された文書化された情報セキュリティポリシーがありますか?
2

Are information security roles and responsibilities clearly defined and allocated?

情報セキュリティの役割と責任は明確に定義・割り当てられていますか?
3

Is there a formal risk assessment process with documented methodology?

文書化された方法論を持つ正式なリスクアセスメントプロセスがありますか?
4

Is there an asset inventory with ownership assigned for all information assets?

全情報資産について所有者が割り当てられた資産台帳がありますか?
5

Do you have supplier/third-party security management procedures?

サプライヤー/第三者のセキュリティ管理手順がありますか?
6

Is there an incident management process with defined response procedures?

定義された対応手順を持つインシデント管理プロセスがありますか?
7

Do you conduct internal ISMS audits at planned intervals?

計画された間隔で内部ISMS監査を実施していますか?
8

Is there a management review process for the ISMS?

ISMSのマネジメントレビュープロセスがありますか?
👥

People Controls

人的管理策 • HR security and awareness

Annex A.6 • 8 Controls
9

Are background verification checks conducted before employment?

雇用前にバックグラウンドチェックを実施していますか?
10

Do employment contracts include information security responsibilities?

雇用契約に情報セキュリティの責任が含まれていますか?
11

Do all personnel receive security awareness training regularly?

全従業員が定期的にセキュリティ意識向上トレーニングを受けていますか?
12

Is there a process for managing employment changes and termination?

雇用変更と退職を管理するプロセスがありますか?
🏗️

Physical Controls

物理的管理策 • Physical and environmental security

Annex A.7 • 14 Controls
13

Are physical security perimeters defined with appropriate entry controls?

適切な入退管理を備えた物理的セキュリティ境界が定義されていますか?
14

Is equipment protected against environmental threats and power failures?

機器は環境上の脅威と電力障害から保護されていますか?
15

Are there procedures for secure disposal or reuse of equipment?

機器の安全な廃棄または再利用の手順がありますか?
16

Is there a clear desk and clear screen policy?

クリアデスク・クリアスクリーンポリシーがありますか?
💻

Technological Controls

技術的管理策 • Technical security measures

Annex A.8 • 34 Controls
17

Is access to systems based on business and security requirements?

システムへのアクセスはビジネスとセキュリティ要件に基づいていますか?
18

Is strong authentication (MFA) implemented for sensitive access?

機密アクセスに強力な認証(MFA)が実装されていますか?
19

Is cryptography used to protect data at rest and in transit?

保存時と転送時のデータ保護に暗号化が使用されていますか?
20

Are malware protection measures implemented and kept current?

マルウェア対策が実装され最新に保たれていますか?
21

Is there a vulnerability management and patching process?

脆弱性管理とパッチ適用プロセスがありますか?
22

Are networks segmented and secured with appropriate controls?

ネットワークは適切な制御でセグメント化・保護されていますか?
23

Are event logs recorded, protected, and regularly reviewed?

イベントログは記録・保護され、定期的にレビューされていますか?
24

Is there a backup policy with regular testing of restoration?

復元の定期的なテストを含むバックアップポリシーがありますか?
0%
ISO 27001 Readiness Score
Calculating...

✨ Recommendations ✧ 推奨事項 ✨

Need ISO 27001 Certification Help? 🏆✧

Our team guides organizations through the ISO 27001 certification journey - from gap analysis to audit preparation. Achieve internationally recognized ISMS certification!

💌 Get Free Consultation ✧ 無料相談
Copied! コピーしました!

Understanding ISO 27001 Certification

What is ISO 27001?

ISO/IEC 27001 is the international standard for Information Security Management Systems (ISMS). It provides a framework for establishing, implementing, maintaining, and continually improving information security. The 2022 version includes 93 controls in Annex A, organized into 4 themes.

ISO 27001:2022 Control Themes

Benefits of ISO 27001 Certification

✧ Frequently Asked Questions ✧

What is ISO 27001?
ISO/IEC 27001 is the international standard for Information Security Management Systems (ISMS). It provides a systematic approach to managing information security through policies, procedures, and controls.
How long does ISO 27001 certification take?
Typically 6-18 months depending on organization size and existing security maturity. This includes gap analysis, ISMS implementation, internal audit, and certification audit stages.
What's the difference between ISO 27001 and SOC 2?
ISO 27001 is an international standard with formal certification, recognized globally. SOC 2 is a US-based attestation report primarily used in North America. Many organizations pursue both for comprehensive coverage.
How much does ISO 27001 certification cost?
Costs vary by size: Small companies $15K-$40K, Medium $40K-$100K, Large $100K-$300K+. Includes consulting, internal audits, and certification body fees.
🔮

Free Security Scan for Your Website

Our Mewtwo Security Scanner checks your site for HTTPS, SSL certificates, security headers, and vulnerabilities—instantly and free.

✓ HTTPS Check ✓ SSL Analysis ✓ Security Headers ✓ Instant Results
Scan Now Free