ISO 27001:2022 reorganized its 93 Annex A controls into four themes. Here is where Alvor implements each one for you, where it helps you manage it, and where it simply holds your evidence.
All 93 Annex A controls across the four themes.
An honest map of where Alvor materially contributes. Control ownership stays with you.
About ISO 27001
Who it is for
Organizations pursuing or maintaining ISO 27001 certification that want to see, before scoping the ISMS, exactly which Annex A controls a platform can carry.
ISO/IEC 27001 is the international standard for an Information Security Management System (ISMS). Certification signals to customers and regulators that you manage information security through a documented, risk-based system rather than ad hoc effort.
The 2022 revision consolidated Annex A into four themes: Organizational, People, Physical, and Technological. Every one of the 93 controls is mapped below, grouped by theme, so the division between what a platform carries and what stays operational is explicit.
Control alignment
Every one of the 93 controls, grouped by the four 2022 themes and rated. Organizational and technological controls are where a platform contributes most; physical and people controls are largely operational, with Alvor maintaining the policy and the evidence. Expand any theme to see the controls.
Alvor performs the control or produces the evidence.
Alvor helps you manage, track, and document it.
You implement it operationally; Alvor stores the control and evidence.
This mapping shows where Alvor materially contributes to each control. It is a guide for scoping, not an authorization or attestation: responsibility for implementing and operating every control remains with your organization. Ratings reflect Alvor's product capabilities and may differ from your assessed boundary.
Keep exploring
Get started
Whether you lead security, run IT, manage compliance, or sit in the C-suite - we'll show you your view.