ISMS.online Pros and Cons

The platform streamlines all aspects of our ISO certification processes, from policy creation to internal audits.

Key strengths include the intuitive document version control, automated notification system for document reviews, and comprehensive audit trail functionality. The dashboard provides clear visibility of tasks and deadlines, which has helped us maintain consistent compliance.

We particularly appreciate the built-in templates for procedures and forms, which saved considerable time during initial setup. The automated reminder system ensures nothing falls through the cracks during periodic reviews and updates. Review collected by and hosted on G2.com.

While the initial learning curve required some adjustment, the support team provided excellent training resources and responsive assistance. The system has ultimately reduced our administrative workload and helped standardise our processes across departments. Review collected by and hosted on G2.com.

We've been using ISMS.online for 4+ years, and without it to manage our ISO27001 compliance - we'd be lost. The tool provides everything you need - from Risk Registers, to various project tracks to keep on top of to-do lists, it has everything. We utitlise many portions of the platform, and particularly find the structure of policies, and how you can build relationships across multiple sections of the system, which helps you build a bigger picture of how certain policies and controls influence other aspects of your information security system. Implementing ISMS.online was super easy and was made even easier with the help of Resilient IT. Review collected by and hosted on G2.com.

Nothing - a very supportive team, and willing to listen to their customers. Review collected by and hosted on G2.com.

It is great that you can do the following:

(1) Allocate someone to a task.

(2) Create a reminder to review any entries.

(3) Have a discussion on a specific task and everything is logged and accessible to anyone with access.

(4) Having a Statement of Applicability (ISO27001) at the touch of a button.

(5) Support is always on hand to handle issues and queries.

(6) Having other frameworks available to link to current framework.

(7) Audit structure - you just follow it like a checklist.

(8) Risk management all in one place and linked to the controls. Review collected by and hosted on G2.com.

Nothing - it is very useful for what we do in our organisation. We have not yet utilised all the functionalities in ISMS.online and there are quite a lot. Our aim is to use ISMS.Online for other things that we do in the Organisation. Review collected by and hosted on G2.com.

I like that it has everything that we need is a company to ensure we are able to attain and maintain our ISO27001 accreditation. It has been hugely helpful in this and has ensured we have thought about everything that we need to get our certification. Getting reminders of items that need attention has been really helpful.

It was really easy to implement the software and we are hoping that later in the year to integrate with other platforms which will hopefully make the system even easier to use. Review collected by and hosted on G2.com.

It can sometimes be hard to navigate but that might be in part because I am not a frequent user compared to other team members. The customer support we received in our first year wasn't always great but once we raised our concerns these were dealt with Review collected by and hosted on G2.com.

ISMS.online made ISO 27001 implementation much smoother, with structured workflows, easy document management, and compliance tracking. It’s a great tool for managing ISMS efficiently. The flexibility of the Customer support to help and tailor any change to specific indiststy or organisation is mind blowing. The tool is used to manage day to day use of the system and the ability to integrate to Lucy Group ITSM i.e Servicenow makes security incidence management very easy and risks management is managed in real-time via the platform. Review collected by and hosted on G2.com.

Nothing i can think of. Probably remove the controls that are not related to ISO27001 so implementers can achieve 100% completion. Review collected by and hosted on G2.com.

The dashboards are very good and the change tracking is also great as you can see every change and approval for each policy in situ. In our old system this was far more difficult to manage. It also makes it easier to delegate tasks to other people. We were also able to integrate to our SSO system which was a bonus as it saved having to set up all new accounts for staff. Review collected by and hosted on G2.com.

The biggest issue I have at the moment is that if someone is editing a policy you can't tell so if two people work on the same policy at the same time they can accidentally overwrite changes. Either a 'lock' feature, or at least a 'currently being edited by <x>' would be helpful. Review collected by and hosted on G2.com.

The user friendly, clean and well-organised interface has made it easy to use for users with different levels of expertise in information security management.

It provides a range of tools and templates that simplify the process of achieving and maintaining compliance with standards like ISO 27001. Review collected by and hosted on G2.com.

Do not have the functionality to remove/hide legecy to-dos.

Lack of sort by and filtering function in the Achieved items.

Table in notes is difficult to use. Review collected by and hosted on G2.com.

It is a great tool to manage you ISM in a structured way and allows you to work through and cover all the areas required for comlicancy. It has some very useful features that make is user friendly for all member of the company and is very good at creating tasks to ensure things are kept on top of Review collected by and hosted on G2.com.

Some features can be a touch annoying such as still have open todo's that remian open even though the policy has been approved so they cant be closed, and perhaps some intergration with other packages such as conflunece, it would be really handy to be able to Iframe some reports or create dashboards that could be linked to report on the topics of interest for management meetings and sometimes when working through a list if you update something and then return back to the list it can remove any sorting so you have to scroll to where you were. Review collected by and hosted on G2.com.

We utilize ISMS.Online for our ISO 27001 compliance. ISMS.Online breaks down the regulation into each seperazte requirement and you are able to add what you do to satisfy the requirement and attach any policies or documents to the requirement. When an auditor comes in it allows you to show what you are doing for each requiredments. Our auditors have loved how organized we are.

We also utilize ISMS.Online for our ISMS, using the tool to track CAPA's, Incidents, Security risks, etc. We also utilize ISMS.Online for our weekly ISMS meetings and quarterly management reviews. Review collected by and hosted on G2.com.

Each regulation is a seperate module and the modules do not share data. We upgraded from ISO 27001:2013 to ISO 27001:2022 and had to update all the data. The company did help with the initial import of data, but I have been told that if we purchased the HIPAA module, it would not share data with the ISO modules. Review collected by and hosted on G2.com.

ISMS.online has transformed the way Cinos manages it ISMS and ISO certifications, significantly streamlining our processes and policies. With ISMS.online, we’ve achieved a more efficient, centralized approach to managing compliance, allowing our team to focus on continuous improvement and proactive risk management, rather than administrative tasks. Review collected by and hosted on G2.com.

While ISMS.online has greatly enhanced our ISMS management, there’s an opportunity for improvement in the accounts section. Integrating features similar to Risk Ledger, where account management could be streamlined, would elevate the platform further. Offering customers the ability to send questionnaires to prospective suppliers and contractors directly from the platform, as well as easily accessing information on existing certifications, would provide a more comprehensive tool for managing supplier and contractor compliance. Review collected by and hosted on G2.com.