urlcv

ISO 27001 Readiness

Traffic-light self-assessment to gauge how ready your organisation is for ISO 27001:2022 certification.

Iso27001 Compliance Audit Infosec Governance

Speed up your recruitment workflow

URLCV automates CV parsing, candidate scoring, and shortlist generation — so you can place more candidates, faster.

Start free trial →
ready

Green Amber Red

Section breakdown

1. Toggle your public security claims. 2. Set each control to Red, Amber, or Green. 3. Use Priorities to work through gaps and export. All data stays in your browser.

Toggle the security claims your organisation makes publicly on your website, trust centre, security docs, or sales materials.

ISMS Clauses

Assess the mandatory ISO 27001:2022 requirements from clauses 4–10.

Annex A Controls

Assess the organisational, people, physical, and technology control themes across Annex A.

Note: This is a self-assessment tool based on ISO 27001:2022 requirements. Formal certification still requires an audit by an accredited certification body.

ISO 27001 Readiness Assessment

Assess your organisation's readiness for ISO 27001:2022 certification using a Vanta-style traffic-light system. Rate each control as Red (not started), Amber (in progress), or Green (fully implemented) and see your overall readiness at a glance.

What you get

  • Traffic-light dashboard — see exactly how many controls are green, amber, or red across every area
  • ISMS clause coverage — assess mandatory requirements from clauses 4–10
  • Annex A control themes — organisational, people, physical, and technological controls
  • Public claims gap analysis — flag mismatches between what you claim publicly and what is actually in place
  • Priority list — red items surfaced first so you know where to focus
  • Export — copy a markdown summary to clipboard for sharing with stakeholders

How it works

  1. Toggle which security claims your organisation makes publicly
  2. Set a Red / Amber / Green status for each control across ISMS clauses and Annex A themes
  3. The dashboard updates live — your goal is all green lights

No data leaves your browser. Everything runs client-side.

Related tools

Website Stack Fingerprinter
Detect what a website is likely built with using only public browser-visible clues (evidence-based, no scanning).
Website Vendor Audit
See which third-party vendors a page appears to load, what they are likely for, and what is worth reviewing for privacy and performance.
Source Map Checker
Check any public website for exposed JavaScript source maps and debug artefacts that could leak source code.
Website Roast
50 checks for tool #50. Enter any URL and get a brutal-but-beautiful report card with a score out of 1000, letter grade, and sharp roast commentary.