Aligned
Partially aligned
Not aligned
Not assessed

Your Name

Organisation
Role / Position

▣ Profile Information

✓ Saved

ISO/IEC 27005 Assessment Progress

Get in Touch with ISO Xpert

We are a UK-based ISO consultancy specialising in ISO/IEC 27001 Information Security Management Systems. Our expert team helps organisations develop robust information security risk management processes aligned with ISO 27005:2022 and ISO 27001 requirements.

Call / WhatsApp
+44 7853 109840
Available for calls & WhatsApp
Email
info@iso-xpert.com
We respond within 24 hours
📍
Address
71-75 Shelton Street
Covent Garden, London
WC2H 9JQ, United Kingdom
🌐
Website
iso-xpert.com
Visit for services & resources
🗺
71-75 Shelton Street, Covent Garden, London WC2H 9JQ

Click to open in Google Maps

🔒 Privacy Policy

Privacy Policy

Last updated: April 2025  |  ISO Xpert Ltd  |  71-75 Shelton Street, Covent Garden, London WC2H 9JQ

ISO Xpert Ltd is committed to protecting your privacy. All data entered in this tool is stored exclusively in your browser's localStorage โ€” not transmitted to our servers unless you export it.

1. Information We Collect

  • Profile Information: Name, email, phone, organisation and role you voluntarily enter.
  • Assessment Data: Gap analysis responses, scores and notes โ€” localStorage only.

2. Your Rights (UK GDPR)

Contact info@iso-xpert.com to exercise your data rights.

3. Contact

ISO Xpert Ltd  |  71-75 Shelton Street, London WC2H 9JQ  |  info@iso-xpert.com  |  +44 7853 109840

📄 Terms of Use

Terms of Use

Last updated: April 2025  |  ISO Xpert Ltd  |  71-75 Shelton Street, Covent Garden, London WC2H 9JQ

By using the ISO Xpert ISO/IEC 27005 Gap Analysis Tool ("the Tool"), you agree to these Terms.

1. Ownership and Intellectual Property

This Tool is the exclusive intellectual property of ISO Xpert Ltd. All rights reserved.

2. Permitted Use

  • Internal, non-commercial gap analysis against ISO/IEC 27005:2022.
  • Exporting reports for internal ISMS risk management records.
  • Sharing reports within your organisation.

3. Prohibited Use

  • Redistribution, resale or sublicensing.
  • Removing or altering copyright notices or ISO Xpert branding.
  • Reverse engineering for commercial purposes.

4. Guidelines Disclaimer

This Tool is provided "as is" for informational and self-assessment purposes only. ISO/IEC 27005:2022 is a guidance standard โ€” it does not contain requirements for certification. Certification is obtained through ISO/IEC 27001. This tool assesses alignment with ISO 27005 guidance on information security risk management, which supports (but does not replace) the risk assessment and risk treatment requirements of ISO 27001 Clauses 6.1.2 and 6.1.3. Information security risk decisions must be taken with qualified information security professionals. The outputs of this tool must not be used as the organisation's definitive risk assessment or Statement of Applicability.

5. ISO Standards Reference

References to ISO/IEC 27005:2022 are for guidance only. This standard complements ISO/IEC 27001 and ISO/IEC 27002. The authoritative version must be obtained from ISO, IEC or national standards bodies.

6. Limitation of Liability

ISO Xpert Ltd shall not be liable for any indirect, incidental or consequential damages, including security incidents or data breaches, arising from use of this Tool.

7. Governing Law

These Terms are governed by the laws of England and Wales.

8. Contact

ISO Xpert Ltd  |  71-75 Shelton Street, London WC2H 9JQ  |  info@iso-xpert.com  |  +44 7853 109840