Description

The Security Foundation Bundle combines ISO 27001 and Cyber Essentials into a single, professionally structured documentation pack, giving you a clear and practical starting point for improving your organisation’s security posture.

Designed for organisations building or formalising their security approach, this bundle helps you move from basic controls to a structured, risk-based framework. It pairs the globally recognised ISO 27001 standard with the accessible, baseline controls of Cyber Essentials—providing both depth and practicality.

Whether you’re preparing for certification, responding to customer security requirements, or strengthening internal controls, this bundle gives you the documentation and structure needed to move forward with confidence.

What’s included
Complete ISO 27001-aligned policy framework
Cyber Essentials baseline control policies and guidance
Supporting procedures and operational documentation
Risk register, treatment plans, and assessment structures
Access control, device security, and configuration standards
Control mapping, evidence guidance, and implementation support

Who this is for
Startups and SMEs building their security foundations
Organisations preparing for Cyber Essentials and/or ISO 27001
SaaS and technology companies handling sensitive data
Teams responding to customer security questionnaires

What this helps you do
Establish a structured and scalable security baseline
Align practical controls with a recognised security framework
Demonstrate security maturity to customers and stakeholders
Reduce time spent creating policies and documentation
Accelerate readiness for audits, certifications, and assessments

Important note
This bundle provides a strong documentation foundation for security. Certification and compliance require implementation, technical controls, and ongoing management.