The European Union’s new cybersecurity directive, NIS2, will come into effect on October 18, 2024, introducing significant requirements for companies’ information security. ISO/IEC 27001 certification offers a way to meet a significant number of these requirements. With its latest version Kiwa Comply™ simplifies and enhances the construction and maintenance also of an ISO/IEC 27001 management system.

Kiwa Comply Helps You Understand and Manage ISO/IEC 27001 Controls

The ISO/IEC 27001 standard contains 93 detailed information security controls, which can be challenging to maintain and document. Kiwa Comply™ speeds up the understanding and development of these controls by e.g. logically grouping them by topic. The application enables easy documentation of the controls and their connection to risk management, helping organizations focus on what matters most.

“Typically, the Statement of Applicability is maintained in an Excel spreadsheet, which can be laborious and complex. Kiwa Comply™ offers a modern solution by consolidating all necessary information into a single interface, making documentation and version control easier,” explains Product Owner Jyrki Lahnalahti.

Comply Continues to Develop and Expand

Kiwa Comply™ also integrates different management systems, such as ISO 9001 and ISO 14001, into one comprehensive system, reducing redundant work and streamlining company data management. Laura Lindholm, Business Development Manager at Kiwa Impact Oy, notes that the product range of the software is constantly expanding, with new standards such as ISO 50001 and ISO 45001 being added in the near future.

Kiwa Finland’s strategy focuses on enhancing customer competitiveness and leveraging digital solutions. Launched in early 2023, Kiwa Comply™ is an example of an advanced service that optimizes customers’ time management and improves operational quality. Customer feedback combined with agile domestic production enables continuous service improvement.