Sentinel Unity
Global standard

ISO/IEC 27001: Information Security Management

The international ISMS standard used by GCC entities for group-wide assurance. Sentinel Unity maps Annex A controls to assessments and cross-references NCA ECC and NIST CSF where controls align.

Annex A

Control set

Fourteen

Control domains

Cross-mapped

To NCA ECC

Global

Recognition

Annex A domains (sample)

Full control library is maintained in Frameworks & Controls; assess across domains in one program.

Information security policies

Policy direction for ISMS.

  • Policy approval
  • Review cycle

Organization of information security

Roles and responsibilities.

  • Segregation of duties
  • Contact with authorities

Asset management

Inventory and ownership.

  • Asset inventory
  • Acceptable use

Access control

Logical and physical access.

  • User access
  • Privileged access

ISO 27001 in Sentinel Unity

Annex A assessment templates

Questionnaires and evidence per control with maturity scoring.

Control library

Pre-loaded ISO controls with domain classification.

Cross-standard mapping

Evidence shared with NCA ECC and NIST CSF assessments.

Gap analysis

Prioritized gaps after assessment cycles.

Certification readiness tracking

Domain-level maturity for certification planning. We do not claim certification.

Run ISO 27001 alongside Gulf national frameworks

Book a demo with our GRC specialists to see how Sentinel Unity supports programs across the Gulf.

No commitment required. Typical demo is 45 minutes.