AI-27001

For MSPs, vCISOs, ISO consultants, and security advisers

Refer or co-deliver AI-27001 without giving up the client relationship.

AI-27001 helps advisers reduce the admin behind ISO 27001 evidence, client assurance, supplier reviews, approvals, and audit trail. The adviser stays in control; the platform provides the structured workflow and evidence layer around the work.

Request a partner-fit review

Referral

Introduce a client with context and keep the advisory relationship visible.

Implementation

Use AI-27001 to structure client evidence, owners, approvals, and follow-up.

Co-delivery

Define who owns advisory, platform, onboarding, and client communication work.

Why partners bring us in

Clients need less evidence chase, not another disconnected compliance folder.

  • Client questionnaires keep pulling account, security, and operations teams into repeat evidence hunts
  • ISO 27001, SOC 2, TSA, supplier, or trust-centre proof is split across tools and owners
  • The adviser wants practical workflow support without losing the client relationship
  • A first client needs a contained evidence-flow review before anyone commits to a broader rollout

Choose your next step

Bring one client workflow before a broader partner commitment.

Book a partner-fit conversation, or map one client assurance, ISO evidence, supplier review, or Cyber Essentials preparation workflow first.

Founding customer plan starts at £300/month + VAT, with hands-on onboarding and one free evidence/admin workflow review before commitment.

Review one client evidence workflowSee founding pricing

Partner proof pack

Review the handoff before introducing a client.

Partners need more than a product overview. This pack gives advisers a safe way to check client ownership, workflow scope, security questions, responsibilities, outputs, and next steps before bringing AI-27001 into a live client relationship.

Client relationship boundary

Review how the adviser stays the trusted front door while AI-27001 supports the agreed evidence workflow behind the scenes.

  • No hidden client nurture
  • Introductions stay agreed
  • Adviser context protected

One workflow pilot scope

Pick a contained first workflow, such as an assurance request, ISO evidence gap, supplier review, or Cyber Essentials preparation trail.

  • Defined start point
  • Named owners
  • Clear expansion trigger

Security and data-handling review

Check what data is needed, what should stay out, and how security questions can be answered before any client handoff.

  • Data minimisation
  • Security posture
  • Pre-introduction questions

Adviser and client responsibilities

Separate platform support from judgement, legal interpretation, certification action, risk treatment, and external commitments.

  • Human approval gates
  • Role clarity
  • No compliance guarantees

Evidence workflow output

See the practical artefacts a partner can expect: owner map, source evidence, review queue, decision trail, and reusable client answer.

  • Evidence map
  • Review trail
  • Reusable answer

Next-step handoff

Agree whether the right route is referral, implementation support, or co-delivery before any broader partner commitment is discussed.

  • Fit conversation
  • Delivery boundary
  • Commercial caution
Review one client evidence workflowReview security and data handling

Partner paths

Choose the route that matches the adviser role.

The first conversation is about fit, client ownership, and delivery boundaries. It is not a promise of fixed resale terms or automated client outreach.

Referral partner

Introduce teams that need ISO 27001 evidence, supplier assurance, or security-review workflow help while staying visible as their trusted adviser.

  • Clear handoff context
  • No hidden nurture blast
  • Partner attribution retained

Implementation partner

Use AI-27001 as the operating layer for client evidence work, with onboarding and migration support where a client needs practical setup help.

  • Workflow mapping
  • Evidence structure
  • Owner and approval setup

Co-delivery

Work alongside AI-27001 on larger assurance or migration projects without implying fixed commercial terms before a proper fit conversation.

  • Defined responsibilities
  • Human approval gates
  • Client relationship protected

Cyber Essentials partner route

Give Cyber Advisors and Certification Bodies a careful 20-minute review path.

Bring one sanitized Cyber Essentials client-preparation workflow or sample evidence set. AI-27001 can show whether the evidence organisation, control mapping, owner chasing, review tasks, and reusable preparation records are worth a paid pilot or referral conversation, while the adviser or Certification Body keeps responsibility for client judgement, scheme advice, assessment, certification, and Plus testing.

Best fit

Advisor and Certification Body traffic should not fall into a generic buyer demo path.

  • One sanitized client evidence workflow can show whether repeated prep admin is worth a paid pilot or referral conversation
  • Cyber Essentials preparation should connect cleanly to ISO 27001, supplier assurance, and security-review evidence
  • The adviser or Certification Body needs client workflow support without implying AI-27001 gives scheme advice or assessment
  • Referral or co-delivery interest should be tracked separately from generic buyer demo traffic

Boundaries

The page stays inside preparation workflow and partner-fit discussion.

  • Cyber Advisors, Certification Bodies, clients, and qualified assessors retain responsibility for advice, assessment, certification, Plus testing, submissions, and compliance decisions.
  • AI-27001 does not claim IASME-licensed, NCSC-assured, Certification Body, Cyber Advisor, auditor, official scheme partner, or guaranteed-pass status.
  • The public route is for partner-fit discussion, not fixed reseller terms, referral-margin promises, directory submissions, or outbound contact from this issue.
Request the free guided review

Keep control

The adviser remains the trusted front door.

AI-27001 supports the workflow behind evidence, approvals, risks, and audit trail while the adviser owns client context, judgement, and relationship management.

Reduce admin

Start where repeat evidence work is already hurting.

Pick one assurance workflow, then connect owners, source evidence, review gates, follow-up actions, and the human-approved client answer.

Stay careful

No overclaiming commercial, legal, or compliance outcomes.

AI-27001 can structure and draft. Humans still approve risk treatment, legal interpretation, external commitments, and formal compliance decisions.

Partner FAQ

Common questions before introducing a client.

Who owns the client relationship?

The adviser stays in control of the relationship. AI-27001 supports the evidence workflow and agreed delivery path; it does not replace the adviser or start contacting the client outside the agreed route.

Can partners review data and security before introducing a client?

Yes. The partner conversation can cover security posture, data handling, onboarding model, and the boundaries of what should or should not be shared before any client work starts.

What does onboarding look like?

Start with one live workflow: a client assurance request, supplier review, audit-prep pack, TSA evidence trail, or ISO 27001 operating gap. Then map owners, evidence, approvals, and follow-up before expanding.

Can a Cyber Essentials adviser try this without a client rollout?

Yes. The free partner guided review can use one sanitized client-preparation workflow or sample evidence set for 20 minutes. The goal is to test evidence-admin fit, not to certify, assess, advise, test, or guarantee an outcome.

Are referral or resale terms published?

Not yet. This page opens a partner conversation rather than promising fixed terms. Commercial options depend on the partner route, client fit, delivery involvement, and support expectations.

Free partner guided review

Test one client evidence workflow before a partner commitment.

Use a sanitized Cyber Essentials, ISO, supplier, or security-review workflow. We’ll keep adviser responsibility, assessment, certification, and client judgement outside the platform promise.

Bring one sanitized client evidence workflow and we’ll use 20 minutes to test partner fit, admin reduction, and adviser boundaries.

12
Choose an offer

Request the guided partner review now, or add optional context first if it helps route the reply.

Next step

Bring one client workflow and test whether a partner route makes sense.

We will look at the evidence/admin pain, the adviser role, the client relationship boundary, and the safest next step.

See the evidence review offer

AI-27001 is a product of SW DIGITAL SERVICES LIMITED, registered in England and Wales. Company number 17178287.