Advanced course in ISO27001:2022 – Statement of Applicability (SoA).

This advanced course is aimed at those of you who already have a basic understanding of ISO27001:2022 and want to deepen your knowledge within one of the most central documents in the standard – the Statement of Applicability (SoA). The course is conducted digitally over a full day, with a focus on practical application and in-depth understanding.

Content and objectives

During the course day, we will go over what an effective and correctly designed SoA looks like, what requirements there are according to the standard, and how it can function as a central steering document for the organization's information security work. The course includes practical exercises and engaging discussions that help you connect theory to practice in your own business.

We delve into: the purpose of SoA and its role in ISO27001:2022, how to select and justify applicability of controls, practical examples and common pitfalls, how SoA links to risk assessment and risk management, SoA in the context of audit and certification, and the relationship between SoA, ISO27002, and other governing documents.

All course participants receive a course certificate upon completion of the training.

Practical information

Location: Digital

Time: Date to be finalised in early 2026

Deadline for registration: 

Price: 6.900 SEK

Other: Can also be carried out on-site at your premises

Course instructor

Patrik Frykman, an experienced expert in information security and ISO standards, shares practical insights and tools to help you achieve success during your information security work.